Folder level permission not working

Similar Messages

• Dashboard level permission - not working?

  Hi,
  I have below Set up,
  created users via weblogic console (just created users only in console) and created custom roles in weblogic EM then assigned users to the below role, after that login to presentation administration catalog page and granted dashboard level access like below and tested with each users ...but unable to see dashboards...?
  the role (RoleA) mapped with below users and granted access for DashboardA only
  David
  Svee
  the role (RoleB) mapped with below users and granted access for DashboardA only
  DPka
  Amit
  DashboardA
  DashboardB
  After setting the permission to the dashboardA&B, test with each users the reports are not showing
  Note: in catalog level BIConsumer set it as "No Access" then tested.i have tested with obiee11.1.1.3 to 11.1.1.6.4 no luck.. also check MOS for bug they said latency issue but i have waited for 2day but no luck?
  also want to tell you one thing
  Thanks
  CW

  Hi,
  So it mean i should alter the standard access level of Everyone.
  Also i am also not able to remove Everyone and Administrator group on any folder .The tab remove is faded.
  Below is the User security of my folder Security
  Administrator
  DB1~100/TEST_SUP
  Everyone
  Financial Reports_test
  Pls clarify

• Item level security not working when placed in a portlet page

  I have three page links linking to separate pages and have two of them with item level security turned on for specific groups with view privilges. I have the access for those groups with view privilges in the page level as well. I have published that as portlet and placed the portlet in another page which has view priviliges for the groups specified in item level as well.
  But I notice that when i place the portlet in a page, the item level security is not working.
  Item Level Security Not Working for Items Placed on a page and published as portlet and placed in another page. Is there some work around for this.
  Thanks
  Valli

  Would you please clarify for me? Is the problem that unauthorized people can see the portlet, or that unauthorized people can see the links?

• Object Level security not working on OBIEE 11g 11.1.1.7

  Hi,
  I am experiencing problems with object level security applied on application role in 11.1.1.7 version. If i create a user and assign that user to a application role and give that application role permission to Access Answers in Manage previleges, it is not working. If i directly add a user to permission list in Manage previleges section then user is able to access the answers. I added that application role in "Access to Answers" section in Manage previleges section. Permission for Authenticated users is denied.
  We recently upgraded from 11.1.1.5 to 11.1.1.7. Please can someone confirm if it a bug in 11.1.1.7 or it is because of the upgrade process.
  Regards,
  Sandeep

  Hello Sandeep,
  I have just verified the below scenario as you said but didnt find any issue.
  I have just created a User, Group and Applictaion Role under default authentication provider . Assigned user under group and group under newly created application role and provided access to answers for new application role under manage privilages and I am able see it.
  This might not be a 11.1.1.7 bug check it from upgrade end.
  Regards,
  Srikanth

• Ntfs permission not working

  Hello Experts,
  Good morning. Thanks in advance.
  Please let me know why NTFS permission is not working in the below cases.
   Case 1- Created a folder Home in DC   "C:\Home"
                 Permission setEveryone group Deny
  to the home folder.
   When a user called test3 login to the domain and access the home folder gets the reply
  Z:\ is not accessible
      Access
   is denied
                It means NTFS permission is working fine.
  CASE 2- Now permission sets Deny  to test3 user for that Home folder.
  When user test3 log in to the domain and he is able to access the Home folder how is it possible. It means NTFS permission is not working properly.
  Regards
  Biswajeet

  Hi Biswajeet,
  What happens that if the user test3 logs off then logs back on? Is he/she able to access the folder then?
  I suggest you also create new folder and new accounts to test this.
  Best Regards,
  Amy
  Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]

• Query level filter not working in Webi report

  Hi All,
  I am using BOXI R3.1 (SP3), m facing one problem when refreshing Webi report on daily basis. I am using three query level filter as a prompt, but i checked one filter is not working then i need to reapply this filter and rest 2 filter is working fine.
  Can anyone suggest me why problem is coming?
  Regards,

  Hi,
  Prompts are interactive, and come from the query panel. Filters are not interactive, and are set on the report or block. There are also input controls, which are interactive filters
  1. Select the universe in the list of universes to open the Query Panel.
  2. Drag the Year object to the Result Objects pane.
  3. Drag the Number of Guests object to the Query Filters pane and create a report filter that restricts Number of Guests to greater than n.
  4. Click Combined Query.
  The Combined Query pane appears in the bottom left of the Query panel with the two queries joined by UNION.
  5. Click on the second query and remove the Year and Number of Guests objects.
  6. Drag the Reservation Year object to the Result Objects pane.
  7. Drag the Future Guests object to the Query Filters pane and create a report filter that restricts the future guests to greater than n.
  8. Click Run Query.
  Best Regards
  Naveen

• Folder Actions will not work - tried everything

  Recently Folder Actions simply stopped working on 10.6.4. They worked fine before then recently just stopped working.
  I've tried everything I can think of, including:
  1. completely removing enabling & disabling & enabling folder actions through the setup app.
  2. trashing folder actions plist files in user domain and relaunching
  3. disabling related launchd processes with lingon
  4. trashing launch agents in user domain and also trying to unload them in terminal
  5. trying to kill the folder actions dispatcher process in activity monitor (just relaunches, as it should)
  6. emptying system caches including dyld shared cache using cocktail
  7. doing most of the above and restarting
  It's driving me nuts. Any other ideas?
  here's some entries from syslog:
  8/2/10 9:31:37 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 6 seconds
  8/2/10 9:37:29 AM Folder Actions Setup[4403] * WARNING: Method selectedRowEnumerator in class NSTableView is deprecated. It will be removed in a future release and should no longer be used.
  8/2/10 9:43:37 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.enabled[309]) Exited: Killed
  8/2/10 9:46:23 AM [0x0-0x3a03a].com.apple.systemevents[360] com.apple.FolderActions.enabled: Already loaded
  8/2/10 9:52:07 AM Folder Actions Setup[1083] * WARNING: Method selectedRowEnumerator in class NSTableView is deprecated. It will be removed in a future release and should no longer be used.
  8/2/10 9:52:16 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 7 seconds
  8/2/10 9:53:02 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 1 seconds
  8/2/10 9:56:18 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 10 seconds
  8/2/10 10:00:58 AM Folder Actions Setup[2190] * WARNING: Method selectedRowEnumerator in class NSTableView is deprecated. It will be removed in a future release and should no longer be used.
  8/2/10 10:01:01 AM com.apple.FolderActions.enabled[2236] launchctl: Error unloading: com.apple.FolderActions.folders
  8/2/10 10:01:30 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 10 seconds
  8/2/10 10:01:42 AM com.apple.launchd.peruser.501[269] (com.apple.FolderActions.folders) Throttling respawn: Will start in 9 seconds
  8/2/10 10:05:03 AM sudo[2622] lryter : TTY=ttys000 ; PWD=/Users/lryter ; USER=root ; COMMAND=/bin/launchctl unload -w /Users/lryter/Library/LaunchAgents/com.apple.FolderActions.enabled.plist
  8/2/10 10:10:25 AM Folder Actions Setup[676] * WARNING: Method selectedRowEnumerator in class NSTableView is deprecated. It will be removed in a future release and should no longer be used.
  8/2/10 10:10:27 AM com.apple.FolderActions.enabled[680] launchctl: Couldn't stat("/Users/lryter/Library/LaunchAgents/com.apple.FolderActions.folders.plist"): No such file or directory
  8/2/10 10:10:27 AM com.apple.FolderActions.enabled[680] nothing found to unload
  8/2/10 10:10:38 AM com.apple.launchd.peruser.501[268] (com.apple.FolderActions.folders) Throttling respawn: Will start in 8 seconds
  8/2/10 10:13:17 AM sudo[943] lryter : TTY=ttys000 ; PWD=/Users/lryter ; USER=root ; COMMAND=/bin/launchctl unload -w /Users/lryter/Library/LaunchAgents/com.apple.FolderActions.enabled.plist
  8/2/10 10:14:01 AM com.apple.launchd.peruser.501[268] (com.apple.FolderActions.folders) Throttling respawn: Will start in 4 seconds
  8/2/10 10:14:14 AM com.apple.launchd.peruser.501[268] (com.apple.FolderActions.folders) Throttling respawn: Will start in 1 seconds

  I finally go Folders Action to work, after being unable to use it even for a simple beep for years now.
  Here is what I did:
  1. Changed permissions to 755 for the following folder and two contained files (note that 775 didn't work for me)
  ~/Library/LaunchAgents/
  ~/Library/LaunchAgents/com.apple.FolderActions.enabled.plist
  ~/Library/LaunchAgents/com.apple.FolderActions.folders.plist
  2. Changed the following lines within ~/Library/LaunchAgents/com.apple.FolderActions.enabled.plist (using TextWrangler)
  from:
  <key>OnDemand</key>
  <false/>
  to:
  <key>OnDemand</key>
  <true/>
  Prior to the permissions changes within #1 above, the value of <true/> kept getting changed back to <false/> by something in the system... and though
  there was improvement by the permissions changes, the following console message appeared until false was changed to true.
  com.apple.FolderActions.enabled[4127] launchctl: Error unloading: com.apple.FolderActions.folders
  At this point true is staying true, and not being changed by unknown forces to false, and the above message is not appearing.
  3. The only other thing I did prior to #1 and #2 above, was to run the script (unsaved),
  tell application "/System/Library/CoreServices/Folder Actions Dispatcher.app" to tick
  This little tell line caused something to occur where my Folder Action surprised me and worked for the first time though it took about 30 seconds and was erratic,
  sometimes performing, sometimes not, though if I would do move something into the folder to trigger the action that should occur, and did not occur, then at the point
  running the above tell line or script would cause the action to occur.
  4. At this point I don't fool with the tell line or script from #3, and it seems that systemevents has gotten involved, as well as launchd, and with my simple Folder Action script
  I'm getting the folder action within 10 seconds compared to 30 to 45 if ever seconds.
  5. This is still too early to tell if this is the wonder pill I've needed since Leopard, and now Snow Leopard (and maybe Tiger as well: I forget when I even tried Folder Actions).
  There was a time when I moved things around, so that the items normally found in the former AppleScript folder, were placed elsewhere in subfolders, so I don't know if that lead to this...
  because I could get Folder Actions to work on Macs in the Applestore, but not my own Mac. Watching the console messages was helpful. I don't think it's a big concern that
  deprecated messages are found sometimes. That's a just a normal part of the constantly rebuilding of things that goes on. It's more like a reminder that we've got an upgraded
  OEM part were going to start using, and the older part won't be available after such and such date, so program accordingly, and in the meantime drive.

• Row level security not working if I hit the aggregate

  I have applied row level security on presentation layer , however it does not work if the report hit the aggregate any idea on this...

  Hi Ingo,
  Security is set up using /crystal/rls transaction. A custom auth object is used for checking the company code with a single field "BUKRS".
  This custom auth object is maintained for the PA0001 table.
  This object is added at the role level with the restricted access to the Company Code..

• Upgraded LV7 to 8.2.1 and List Folder pattern does not work anymore as it did

  Hi
  I have upgraded LV7 to 8.2.1 and use XP.
  In a vi developed in LV7 I used the List Folder with pattern input to check wether a file name already exist in a folder  (path). This worked very well in LV 7 as the function return the filename if the exisiting filename matched the pattern input. In 8.2.1 this fucntion still exists but it does not return the filename as it used to do which is rather annoying.
  Has anybody else experienced this ie is it a bug? or is the operation of the function changed?
  Thanks in advance for the help.
  Cheers
  Jack

  Hi Jack,
  I can understand your frustration..   We had a thread complaining about the changes when it was first introducted.  Now that I'm used to it, I wouldn't go back..
  However, you can keep all versions of Labview installed on the same PC, meaning that Labview versions 7.0, 7.1, 8.0, 8.2, 8.5 can all happily co-exist on the same PC.  The benefit is that you can use the original version that you developped your code and continue to enhance the code using the original version without having to adapt to the newer version.  However, going up versions should be compatible, unless you are adding new features.
  There is one catch in what I described.  And you must keep a backup copy of your code.  If you open an older version using a newer version and save it, you cannot open it again in your older version, unless you use Save As Previous.  For that reason, it is best to keep an extra copy somewhere (which is always good practice anyway).
  Hope this helps,
  RayR

• Folder redirection (Desktop) not working sometimes

  I'm having an issue where sometimes desktop redirection is not working properly.
  We have AD set to point the profile path to a local mandatory profile, with GP redirection set for several items, including desktop. However, about half the time when the user logs in, the desktop showing is from their local profile (C:\Users\[username]\desktop).
  By logging out and back in a couple times it will finally load the desktop from the redirected location on the network, and the correct icons will show on the desktop, but it will ultimately not work again on the next logon.
  Tried GPUPDATE, didn't fix the problem. It doesn't appear to be a rights issue, as I can successfully connect to the redirected desktop folder from within the user's account. What I don't understand is why it is ever loading the user's local profile desktop,
  when it is supposed to load the mandatory one.
  Any ideas are appreciated!

  Figured it out.
  The OU the computer was in didn't have the computer GPO linked. One of the computer GPO settings was to delete the locally cached profile of the user upon logout. Since this wasn't being done, Windows was loading the locally cached profile rather than the
  mandatory profile. This also was apparently causing the local account desktop to show rather than the redirected desktop. I'm assuming it was irregular depending on which profile was showing most recent modified.

• Windows XP file/folder handling does not work? (RSP Rules!)

  Sorry if this has been asked many times before, but a forum search on "folder" does not return anything ??? (amazing)
  I am trying to make sense out of where and when to use folders and collections and I wish there would be more info in the help/manual.
  Lesson learned so far: you can spend an awful lot of time flagging images as rejected and then delete them from a quick collection, only to find out that they are only removed from the (logical) quick collection, not from the (physical) folder on the file system. @!x$
  Now, it seams that any folder action does either not work at all or only works partially:
  - I cannot import an empty folder, to put images in later
  - I cannot drag and drop more than one file at a time to a folder
  - When I create a new folder, I never get to see it or name it in Lightroom. It gets created on the file system however, as "new folder (x)".
  Why are there no settings under "preference" where to put libraries, back-ups of libraries, which library to use at startup, where and how to create/store previews and their lifetime and so on?
  Also, there should be a much more convenient way in the handling of multiple computers and creating/restoring backups!
  Reading some of the endless complaints about file corruptions and file losses, I think I will return to RawShooter Premium untill I finally get the feeling that my images and the work on them are safe within Lightroom. RSP is also WAY more snappy and responsive (except for the slide show)!

  Jeff: You truly offered some amazing insight here! I really thought that Adobe bought Pixmantec for their technology and for the wizzards that drove that technology. Now you made it clear that all that is limited to "inspiration". Wow! So, why DID Adobe buy Pixmantec? Market share? Take the most brilliant and cheap competitor off the market? Some other reason???
  Apart from that: I DO know that writing software is not easy. It must be really unpleasant for the hard working "scary brilliant" experts with a serious track history to hear people complain about issues like file handling on a particular operating system instead of admiring their brilliant ideas and concepts.
  Alas, this is life: if you would buy a car you would bring it back to the garage to complain about the lock in the trunk that opens at awkward times leading you to loose your groceries instead of talking to those people about how magnificent that particular car takes you trough corners at 100 mph.
  And I still believe that the RSP folks did a better job with their version 1 than Adobe did with LR, knowing that Lightroom is more complicated than RSP and taking into consideration that the Adobe people have a much longer history and experience with Photoshop/Album/Bridge. So I would say Adobe can learn a lot from the RSP boys. Just do it!
  Tim: as I'm planning to move from RSP to LR (maybe wait until 1.1), the most important starting information I'm looking for right now is how to set up my filesystem and the LR database for the most efficient way of working and for the "most" data security. Neither the LuLa tutorial nor the help file/manual seem to offer much information on this -I believe extremely important- topic.
  All this aside from what seems like Windows file handling bugs to me, hopefully adressed in version 1.1

• Row Level Security not working for SAP R/3

  Hi Guys
  We have an environment where the details are as mentioned below:
  1. Crystal Reports are created using Open SQL driver to extract data from SAP R/3 using the SAP Integration Kit.
  2. The SAP roles are imported in Business Objects CMC.
  3. Crystal Reports are published on the Enterprise as well.
  3. Authorization objects are created in SAP R/3 and added as required for the row level security as mentioned in the SAP Installation guide as well. The aim is when the user logs into the Infoview and refreshes the report he should only see data that he is meant to so through the authorization objects.The data security works very much fine when the reports are designed directly on the table but when the reports are built on the Business View it doesnt work hence the user is able to see all data.
  Any help in this issue is greatly appreciated.
  Thanks and Regards
  Kamal

  Hi,
  In order for row level security to work for you using the OpenSql driver, you need to configure the Security Definition Editor on your SAP server.  This is a server side tool which the Integration solution for SAP offers as a transport.
  This tool defined which tables are to be restricted based on authorizations.
  However since you are seeing the issue on reports based on Business Views, you need to identify whether the Business View is configured in such a way where the user refreshing the report is based on the user logging into Infoview.  If the connection to your SAP server is always established with the same user when BV is used then you security definition is pointless.
  You can confirm this by tracing your SAP server to identify what user is being used to logon to SAP to refresh the reports.
  thanks
  Mike

• Concert level mapping not working

  I've tried  to make my playback controls work on a concert level so I don't have to reset them to each patch. For instance, I tried setting a button to play but it doesn't work. Any ideas?

  Hi
  Where you put the Playback Channel Strips all depends on how you want to work. The basic concept is that at Patch level they will only work in that particular Patch. At Set level they will work throughout that set (with or without additional patches in the same set). At Concert level they are Global.
  You may find it useful to make one Set or Patch with the right number of Playback channels, map the Screen controls, then make copies of the Set/Patch and simply swap out the Playback audio files. That way you only have to do the Control mapping once.
  You could also save the Set/Patch, for future use.
  HTH
  CCT

• Database Level Security not working ???

  The 10 g (10.1.2.1) documentation states the following:
  Chapter 7 Controlling access to information:
  "Regardless of the access permissions and task privileges that you set in Discoverer Administrator, a Discoverer end user only sees folders if that user has been granted the following database privileges (either directly or through a database role):
  ex: SELECT privilege on all the underlying tables used in the folder "
  So how come a folder (view in my case - not table) cannot be queried directly by a user, but the folder still shows up a choice when building a report using PLUS ? I am misreading the above ? For is sounds lilke to me if the user account does not have SELECT privilege then they will not see the folder in Discoverer ?
  Anyone run into the same issue or have an explanantion ?
  thanks
  OBX

  I think the user has access to see all the folders in the business area in Discoverer if he has permission to do so. This is a Discoverer level security to filter people who should not have access to the business area at all. You'll find that although they can see these Discoverer folders because the permission is set in Discoverer Administrator, that the database tables they are based on will not allow the users to see any of the data if they don't have those rights at the database level.

• Obi 11g row level security not working

  All,
  I am very familiar and have worked with obi 10g row level security and it works pretty easily. Now in 11g not so easy. I am basically setting permissions on data filters on app roles as per the new 11g instructions and meta data guide, however, I never see the filters being applied in the report and also in the nqquery.log. I have tried in vain, and nothing. The filters are never being applied for the test user. I even verified the user is in the specified app role via their my account->app roles tab. Now has anyone had this experience or now is there something that must be done additionally now.
  Very frustrated... ;(

  Ok, so I have found the solution and ultimately the answer to why the object level and row level security was not being applied. It so happens that the app policy: 'resourceType=oracle.bi.server.permission, resourceName=oracle.bi.server.manageRepositories all' not only allows the management and access to online RPDs; but, IT ALSO DOES NOT APPLY SECURITY/PERMISSIONS IN THE RPD TO THAT USER thus you are super user. So the OOTB BIAdministrator app role which my AD user was being assigned never had any security applied due to this. How I tested:
  1) I created a test user
  2) Assigned that user to the BIAuthor app role and saw that they had the security applied that I was testing, which was simple object denial and row-level security to just one year on the date dim.
  3) Since it was working, I then assigned that user to the BIAdministrator role. This produced that the test user now does not have any restrictions that I set and that were working before. Thus, security/perms in the RPD are not applied.
  4). I removed the user from the BIAdministrator app role, kept in the BIAuthor app role and then created new test app role. I mapped that user to this new role along with the BIAuthor role. I then proceeded in creating new app policy with just that policy and assigning the new app role to it.
  5) I logged into the presentation services again with this test user after assigning to new app role and policy. My test user again does not have the security being applied and does not get any perms/security that I set and applied in the RPD. On top of that my test user is now able to login in online mode to the rpd via the bi admin tool.