FR Read Access to User Issue

Similar Messages

• Is it possible to have read access to users 'my folders' / proxy problem

  Hi,
  is this possible to set up the security in such a way that an administrator has a read access to all the users folders? e.g to user's 'my folders' content?
  if the only possibility is to take ownership and grant access, what are unwanted consequences of doing so?
  we enocunter multiple issues with users using obi incorrectly, but cannot access their private ibots/reports/subscriptions;
  or at least: how to copy the users folders into test so that we can see the content; with no access if copied the folders are empty;
  thanks in advance for any suggestions
  rgds
  Edited by: UserMB on Jul 14, 2009 2:04 AM
  Edited by: UserMB on Jul 14, 2009 2:10 AM
  Edited by: UserMB on Aug 4, 2009 4:03 AM

  up;
  still having the problem to get the proxy functionality working
  the setting I currently have is:
  created the required table with proxies in db
  adjusted instanceconfig -> added the message on max value 100
  created a custom xml message to get the value/verify value/delegate users
  created init blocks/variables for proxy, proxylevel, runas ('Empty' from dual)
  granted the privilage proxy in presentation
  we are using sso
  weird thing is: even if i put in the custom message fixed values so that list of proxies/target users is fixed (i.e. instead '@USER' -> 'ADMINISTRATOR' ) it would not retrieve any values when I press 'Act as'
  (error message: This functionality has not been enabled by your administrator)
  id appreciate any suggestions
  thx
  rgds

• Users with read access to the site unable to view Managed Metadata Navigation

  Hi everyone,
  I created a Managed Metadata service and created group, term-set and terms
  I gave read access to users
  I set up navigation to use Managed Navigation
  I am logged in as farm admin and able to view the navigation when i browse site. But user are not seeing navigation.
  One thing i noticed is when i give users full access or designer access to site they will be able to see the navigation. but i don't want to give users full access or designer access to the site.
  How can users with read only access to site can view Managed Metadata Navigation...Please help?

  Hi Sunil,
  Have you given your users permissions to actually read the MMS data from the service application?
  http://technet.microsoft.com/en-us/library/ff625176.aspx covers permissions on the MMS.
  Regards
  Paul.
  <<edit>> On reflection you might be hitting the issue in this Stackexchange post..
  http://sharepoint.stackexchange.com/questions/75636/permissions-and-managed-metadata-in-navigation Is yours behaving the same way?
  Please ensure that you mark a question as Answered once you receive a satisfactory response. This helps people in future when searching and helps prevent the same questions being asked multiple times.

• Social comment control in custom page layout stucks at "Working" for read access users

  Hi,
  I created a custom page layout which is attched to my custom content type.
  i have a custom field control which is derived from RichImageField.
  i have also added a social comment control to the page layout using
  <SharePointPortalControls:SocialCommentControl ID="SocialCommentControl1" runat="server"  />.
  Now the problem is, an user who have read access for a pages library should post comments. but its not working and when the user clicks post button it stucks at working. but when the user is given contribute access then it works and the comments are posted.
  And one more thing is if i remove my custom field control from the page layout, then user with read access can post the comment without any issues.
  i am sure the issue is caused by my custom field control but dont know how to solve it. i dont want to give contribute access to the users as they can edit the content of the page also. Any help would be appreciated.
  This is the custom field control code.
  public class mycompanyRichImageField : RichImageField
  public static string webimage = null;
  #region Private variables
  /// <summary>
  /// File upload control used to upload image.
  /// </summary>
  private FileUpload fileUpload;
  /// <summary>
  /// Upload button.
  /// </summary>
  private Button btnSave;
  /// <summary>
  /// Delete button.
  /// </summary>
  private Button btnClear;
  /// <summary>
  /// Article image.
  /// </summary>
  private Image imgPicture;
  /// <summary>
  /// Image width.
  /// </summary>
  private DropDownList ddlWidth;
  /// <summary>
  /// Temporary store image url.
  /// </summary>
  private Label lblFileName;
  /// <summary>
  /// Image text.
  /// </summary>
  private TextBox txtImage;
  /// <summary>
  /// Value of image field.
  /// </summary>
  private ImageFieldValue pageImage;
  /// <summary>
  /// List item - current article.
  /// </summary>
  private SPListItem ArticlePage = SPContext.Current.ListItem;
  /// <summary>
  /// The first image width dropdown list options, default value 240 px.
  /// </summary>
  // private int imageWidthWide = 400;
  //private int height = 225;
  /// <summary>
  /// The second image width dropdown list options, default value 120 px.
  /// </summary>
  private int imageWidthNarrow = 126;
  /// <summary>
  /// Picture library to store the image files.
  /// </summary>
  private string imageLibrary = "Images";
  /// <summary>
  /// List field to store Article image.
  /// </summary>
  private string imageField = "Page Image";
  /// <summary>
  /// List field to store image text.
  /// </summary>
  private string imageTextField = "Image Text";
  private string preview = "Preview";
  /// <summary>
  /// List field to store rollup image.
  /// </summary>
  private string rollupImageField = "Rollup Image";
  /// <summary>
  /// Whether to update the rollup image using the current image.
  /// </summary>
  private bool updateRollupImage = false;
  /// <summary>
  /// Whether to display image text.
  /// </summary>
  private bool enableImageText = true;
  #endregion
  #region Properties
  /// <summary>
  /// Gets or sets the first choice of image width.
  /// </summary>
  //public int ImageWidthWide
  // get
  // return this.imageWidthWide;
  // set
  // this.imageWidthWide = value;
  //public int ImageHeight
  // get
  // return this.height;
  // set
  // this.height = value;
  /// <summary>
  /// Gets or sets the second choice of image width.
  /// </summary>
  public int ImageWidthNarrow
  get
  return this.imageWidthNarrow;
  set
  this.imageWidthNarrow = value;
  /// <summary>
  /// Gets or sets the name of the picture library that is used to store image files.
  /// </summary>
  public string ImageLibrary
  get
  return this.imageLibrary;
  set
  this.imageLibrary = value;
  /// <summary>
  /// Gets or sets the field name of image.
  /// </summary>
  public string ImageField
  get
  return this.imageField;
  set
  this.imageField = value;
  /// <summary>
  /// Gets or sets the field name of image text.
  /// </summary>
  public string ImageTextField
  get
  return this.imageTextField;
  set
  this.imageTextField = value;
  /// <summary>
  /// Gets or sets the field name of rollup image.
  /// </summary>
  public string RollupImageField
  get
  return this.rollupImageField;
  set
  this.rollupImageField = value;
  public string Preview
  get
  return this.preview;
  set
  this.preview = value;
  /// <summary>
  /// Gets or sets a value indicating whether to update rollup image using current image.
  /// </summary>
  public bool UpdateRollupImage
  get
  return this.updateRollupImage;
  set
  this.updateRollupImage = value;
  /// <summary>
  /// Gets or sets a value indicating whether the image text should be displayed.
  /// </summary>
  public bool EnableImageText
  get
  return this.enableImageText;
  set
  this.enableImageText = value;
  #endregion
  #region Override methods
  /// <summary>
  /// Using get method instead of set method to set the value.
  /// set method cannot be used here.
  /// </summary>
  public override object Value
  get
  ImageFieldValue value = new ImageFieldValue();
  value.ImageUrl = string.IsNullOrEmpty(this.lblFileName.Text) ? this.imgPicture.ImageUrl : this.lblFileName.Text;
  // value.Width = string.IsNullOrEmpty(this.ddlWidth.Text) ? this.ImageWidthWide : Convert.ToInt32(this.ddlWidth.Text);
  // value.Height = this.ImageHeight;
  ////update the page rollup image.
  if (this.UpdateRollupImage)
  this.ArticlePage[this.RollupImageField] = value;
  if (this.EnableImageText)
  this.ArticlePage[this.ImageTextField] = this.txtImage.Text;
  this.ArticlePage.SystemUpdate(false);
  return value;
  set
  base.Value = value;
  /// <summary>
  /// Intialize all controls.
  /// </summary>
  protected override void CreateChildControls()
  this.pageImage = (ImageFieldValue)this.ArticlePage[this.imageField];
  this.ddlWidth = new DropDownList();
  this.ddlWidth.Width = 99;
  // this.ddlWidth.Items.Add(this.ImageWidthWide.ToString());
  this.ddlWidth.Items.Add(this.ImageWidthNarrow.ToString());
  if (this.pageImage != null && !string.IsNullOrEmpty(this.pageImage.ImageUrl))
  // if (this.pageImage.Width >= this.ImageWidthWide)
  // // this.ddlWidth.SelectedIndex = 0;
  //else
  // // this.ddlWidth.SelectedIndex = 1;
  // this.Controls.Add(this.ddlWidth);
  this.imgPicture = new Image();
  if (this.pageImage != null && !string.IsNullOrEmpty(this.pageImage.ImageUrl))
  this.imgPicture.ImageUrl = SPContext.Current.Site.Url + this.pageImage.ImageUrl;
  this.Controls.Add(this.imgPicture);
  this.fileUpload = new FileUpload();
  this.fileUpload.Width = 180;
  this.Controls.Add(this.fileUpload);
  this.btnSave = new Button();
  this.btnSave.Text = "Upload";
  this.btnSave.CausesValidation = false;
  this.btnSave.Visible = string.IsNullOrEmpty(this.imgPicture.ImageUrl) ? true : false;
  this.Controls.Add(this.btnSave);
  this.btnSave.Click += new EventHandler(this.BtnSave_Click);
  this.btnClear = new Button();
  this.btnClear.Text = "Delete";
  this.btnClear.CausesValidation = false;
  this.btnClear.Visible = !this.btnSave.Visible;
  this.Controls.Add(this.btnClear);
  this.btnClear.Click += new EventHandler(this.BtnClear_Click);
  this.lblFileName = new Label();
  this.Controls.Add(this.lblFileName);
  if (this.EnableImageText)
  this.txtImage = new TextBox();
  this.txtImage.TextMode = TextBoxMode.MultiLine;
  this.txtImage.Rows = 4;
  this.txtImage.Text = this.ArticlePage[this.ImageTextField] == null ? string.Empty : this.ArticlePage[this.ImageTextField].ToString();
  this.Controls.Add(this.txtImage);
  /// <summary>
  /// Render the field in page edit mode.
  /// </summary>
  /// <param name="output">Output stream.</param>
  protected override void RenderFieldForInput(System.Web.UI.HtmlTextWriter output)
  output.Write("<div style='padding-bottom:12px'>");
  if (!string.IsNullOrEmpty(this.imgPicture.ImageUrl))
  output.Write("<br />");
  // this.imgPicture.Width = ((ImageFieldValue)this.Value).Width;
  // this.imgPicture.Height = ((ImageFieldValue)this.Value).Height;
  this.imgPicture.RenderControl(output);
  if (this.EnableImageText)
  this.txtImage.Width = this.imgPicture.Width;
  if (this.EnableImageText)
  output.Write("<br />");
  this.txtImage.RenderControl(output);
  output.Write("<br /><br />");
  this.fileUpload.RenderControl(output);
  this.btnSave.RenderControl(output);
  this.btnClear.RenderControl(output);
  output.Write("<br /><br />");
  //output.Write("Width:");
  //this.ddlWidth.RenderControl(output);
  output.Write("</div>");
  /// <summary>
  /// Render the field in page display mode.
  /// </summary>
  /// <param name="output">Output stream.</param>
  protected override void RenderFieldForDisplay(System.Web.UI.HtmlTextWriter output)
  if (this.ListItemFieldValue != null)
  output.Write("<div style='padding-bottom:12px'>");
  base.RenderFieldForDisplay(output);
  if (this.EnableImageText && this.ArticlePage[this.ImageField] != null
  && this.ArticlePage[this.ImageTextField] != null)
  //string strImgWidth = string.IsNullOrEmpty(this.ddlWidth.Text) ? this.ImageWidthWide.ToString() : this.ddlWidth.Text;
  //string strImgHgt = this.ImageHeight.ToString();
  output.Write("<div style='width:");
  // output.Write(strImgWidth);
  // output.Write(this.imgPicture.ImageUrl);
  // output.Write("<div style='height:");
  // output.Write(strImgHgt);
  output.Write(";margin-right:4px;' align='left'>");
  output.Write(this.ArticlePage[this.ImageTextField].ToString());
  output.Write("</div>");
  output.Write("</div>");
  #endregion
  #region Button events
  /// <summary>
  /// Delete image file from the library and empty the image field.
  /// </summary>
  /// <param name="sender">Delete button.</param>
  /// <param name="e">No arguments.</param>
  protected void BtnClear_Click(object sender, EventArgs e)
  ////remove the image file from the Images library
  using (SPSite site = new SPSite(
  SPContext.Current.Web.Url,
  SpSecurityHelper.GetSystemToken(SPContext.Current.Site)))
  using (SPWeb currentWeb = site.OpenWeb())
  SPDocumentLibrary imageList = (SPDocumentLibrary)currentWeb.Lists[this.ImageLibrary];
  SPFolder rootFolder = imageList.RootFolder;
  try
  currentWeb.AllowUnsafeUpdates = true;
  rootFolder.Files.Delete(this.imgPicture.ImageUrl);
  rootFolder.Update();
  catch
  ////cannot delete specified file, this means file doesn't exist, the file must be deleted
  ////directly in the Images library by someone
  ////don't do anything here
  finally
  currentWeb.AllowUnsafeUpdates = false;
  if (this.pageImage != null)
  this.pageImage.ImageUrl = string.Empty;
  this.imgPicture.ImageUrl = string.Empty;
  this.lblFileName.Text = string.Empty;
  this.btnClear.Visible = false;
  this.btnSave.Visible = true;
  /// <summary>
  /// Upload image file to library and fullfilled the image field.
  /// </summary>
  /// <param name="sender">Upload button.</param>
  /// <param name="e">No argument.</param>
  protected void BtnSave_Click(object sender, EventArgs e)
  this.ArticlePage[this.ImageTextField] = this.txtImage.Text;
  this.ArticlePage.SystemUpdate(false);
  string fileName = this.fileUpload.FileName;
  ////validate file name
  if (fileName == string.Empty || !this.fileUpload.HasFile)
  this.lblFileName.Text = string.Empty;
  if (this.pageImage == null)
  this.Page.ClientScript.RegisterStartupScript(typeof(string), "NoImage", "<script>alert('No image found, please select an image.')</script>", false);
  else
  using (SPSite site = new SPSite(
  SPContext.Current.Web.Url,
  SpSecurityHelper.GetSystemToken(SPContext.Current.Site)))
  using (SPWeb currentWeb = site.OpenWeb())
  SPDocumentLibrary imageList = (SPDocumentLibrary)currentWeb.Lists[this.ImageLibrary]; ////Images
  SPFolder rootFolder = imageList.RootFolder;
  ////the image file name must be unique except for the file name extension
  string imageName = this.ArticlePage.UniqueId.ToString("N") + this.FieldName + Path.GetExtension(fileName);
  ////first delete the image file from the Images library.
  ////if a file with different file name extension is uploaded, the old file won't be overwritten,
  ////and will never be deleted from this page, so it must be deleted before adding a new one.
  if (this.pageImage != null && !string.IsNullOrEmpty(this.pageImage.ImageUrl))
  try
  currentWeb.AllowUnsafeUpdates = true;
  rootFolder.Files.Delete(this.pageImage.ImageUrl);
  rootFolder.Update();
  catch
  ////cannot delete specified file, this means file doesn't exist, the file must be deleted
  ////directly in the Images library by someone
  finally
  currentWeb.AllowUnsafeUpdates = false;
  try
  currentWeb.AllowUnsafeUpdates = true;
  SPFile imageFile = rootFolder.Files.Add(imageName, this.fileUpload.FileBytes, true);
  finally
  currentWeb.AllowUnsafeUpdates = false;
  // this.lblFileName.Text = currentWeb.Site.Url + imageList.RootFolder.ServerRelativeUrl + "/" + imageName;
  this.lblFileName.Text = currentWeb.Site.Url + imageList.RootFolder.ServerRelativeUrl + "/_w/" + imageName.Substring(0, imageName.LastIndexOf(".")) + "_" + imageName.Substring(imageName.IndexOf(".") + 1) + "." + imageName.Substring(imageName.IndexOf(".") + 1);
  // webimage = currentWeb.Site.Url + imageList.RootFolder.ServerRelativeUrl + "/_w/" + imageName.Substring(0,imageName.LastIndexOf("."))+"_"+imageName.Substring(imageName.IndexOf(".")+1) +"." + imageName.Substring(imageName.IndexOf(".")+1);
  this.imgPicture.ImageUrl = this.lblFileName.Text;
  this.btnClear.Visible = true;
  this.btnSave.Visible = false;
  #endregion
  This is how i used it in my page layout
   <Article:mycompnayRichImageField runat="server" ID="RichImageField1" InputFieldLabel="Keep image text short and precise" FieldName="PublishingPageImage" UpdateRollupImage="true"/>
  Aruna

  Hi,
  For this issue, I'm trying to involve someone familiar with this topic to further look at it.
  Thanks,
  Jason Guo
  TechNet Community Support

• How to find from the data dict if a user has read access on a directory

  How to find "dynamically" if a user has READ access to a directory object.
  I want to know if there is a data dictionary table that holds if a user/schema has read access to a directory object.
  I know there is an dba_directories table and an all_directories table but they dont give information as to which user has read access granted to the directory.

  Not so difficult.
  select  'YES'
     from all_tab_privs A, all_directories B
     where a.grantee = 'USERNAME'
         and a.table_name = b.directory_name
         and b.directory_path = 'PATH YOU ARE LOOKING FOR'
  How to find "dynamically" if a user has READ access to a directory object.
  I want to know if there is a data dictionary table that holds if a user/schema has read access to a directory object.
  I know there is an dba_directories table and an all_directories table but they dont give information as to which user has read access granted to the directory.

• Error while reading access data (URL, user,password) for the Adapter Engine

  Hi,
  Any idea on below message? I am doing file to file scenario and got the below tarce from sxmb_moni.
  <?xml version="1.0" encoding="UTF-8" standalone="yes" ?>
  - <!--  Call Adapter
    -->
  - <SAP:Error xmlns:SAP="http://sap.com/xi/XI/Message/30" xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/" SOAP:mustUnderstand="">
    <SAP:Category>XIServer</SAP:Category>
    <SAP:Code area="INTERNAL">AE_DETAILS_GET_ERROR</SAP:Code>
    <SAP:P1>af.pi1.piserver1</SAP:P1>
    <SAP:P2 />
    <SAP:P3 />
    <SAP:P4 />
    <SAP:AdditionalText>no_messaging_url_found: Unable to find URL for Adapter Engine af.pi1.piserver1</SAP:AdditionalText>
    <SAP:ApplicationFaultMessage namespace="" />
    <SAP:Stack>Error while reading access data (URL, user, password) for the Adapter Engine af.pi1.piserver1</SAP:Stack>
    <SAP:Retry>M</SAP:Retry>
    </SAP:Error>
  Thanks
  Balaji

  It looks like the adapter engine is not able to register him self on SLD, you have to check in the SLD the "Exchange Infrastructure" domain, you have to verify restarting the J2EE the adapter engine update the entries in the SLD related to the specific XI Domain.
  Launch Visual Administrator >> Server >> Services >> SAP AF CPA Cache
  Enter the appropriate values for:
  SLD.selfregistration.hostname (Use fully qualified hostname)
  SLD.selfregistration.httpPort
  SLD.selfregistration.httpsPort
  Sandro

• Granting Read Only Access to user in another schema

  Oracle Database 10g
  Red Hat Enterprise Linux Server release 5.3
  We are requested by a developer to grant his account read only access to TABLES, VIEWS, INDEXES, SEQUENCES, FUNCTIONS, PROCEDURES, PACKAGES, TRIGGERS, JOBS of another schema.
  I know granting read only access to Tables and Views. But is it possible to grant READ ONLY access to other mentioned objects ? How to do it ?
  And some views are in INVALID status.
  I tried to compile them using alter view owner.viewname compile;
  But got this ---- Warning: View altered with compilation errors.
  Those views are still in INVALID status. And then I tried to use utlrp.sql . Same result.
  Then I used the following
  SELECT TEXT FROM DBA_VIEWS WHERE VIEW_NAME='view-name';
  select REFERENCED_NAME,REFERENCED_TYPE from dba_dependencies where name='view-name';
  It turns out some reference types are non existent.
  Does that mean DBAs cannot do anything about this ?

  Nilton wrote:
  We are requested by a developer to grant his account read only access to TABLES, VIEWS, INDEXES, SEQUENCES, FUNCTIONS, PROCEDURES, PACKAGES, TRIGGERS, JOBS of another schema.
  I know granting read only access to Tables and Views. But is it possible to grant READ ONLY access to other mentioned objects ? How to do it ?
  TABLES -> YES grant SELECT
  VIEWS -> YES grant SELECT
  SEQUENCE -> YES grant SELECT
  INDEXES -> There is no read access for indexes...indexes are put on tables and a user who has read access on tables can read the index as well.
  FUNCTIONS / PROCEDURES / PACKAGES -> I am not sure what you mean by read access on procedures, functions and packages. You may grant EXECUTE privilege on these.
  TRIGGERS -> there is no read access on triggers required. They are implemented on tables for a DML event. If the user has DML access he has the execute access on the trigger as well.
  JOBS -> I am not sure what to read from Jobs.
  And some views are in INVALID status.
  I tried to compile them using alter view owner.viewname compile;
  But got this ---- Warning: View altered with compilation errors.
  Those views are still in INVALID status. And then I tried to use utlrp.sql . Same result.
  Then I used the following
  SELECT TEXT FROM DBA_VIEWS WHERE VIEW_NAME='view-name';
  select REFERENCED_NAME,REFERENCED_TYPE from dba_dependencies where name='view-name';
  It turns out some reference types are non existent.
  Does that mean DBAs cannot do anything about this ?There are compilation errors in the Views. e.g. the view may be referring to a table which doesn't exist etc.
  Unless you fix the error in the view you can't compile it and male it valid. Fix the view errors. If objects are non existing create them or refer to view to some where else.
  If the nonexistent objects were mistakenly dropped, or the data file which contained those objects was dropped, no matter what was the reason for that object to be gone a DBA can bring it back if he is a well prepared DBA and has setup his database for such kind of disasters.
  Now tell us why those objects are non-existent ? were they meant to be gone ? or they were dropped mistakenly?
  Now here are my guesses:
  If they were meant to be gone then probably the views definitions need to be adjusted not to refer them anymore.
  If they were mistakenly dropped then:
  Do you have them in recyclebin? (only tables) if YES just FLASHBACK TABLE <<tablename>> AS BEFORE DROP.
  Is your database has Flashback database ON? if YES FLASHBACK DATABASE until 'time/scn just before the object was dropped'
  Do you have backups and your database is running in ARCHIVE LOG mode? if YES perform an incomplete recovery using RMAN.

• Giving a user read access to an account for all entities

  Dear All,
  We have a series of R&D accounts that a user with limited entity security needs to review for all entities.
  We have security switched on for Accounts and Entities only.
  All entites have security classes defined, only the R&D accounts have a security cless defined (all other accounts ahve a balnk security class).
  The user is not allowed to see any other accounts for the entities which they have no access to.
  is it possible in HSS to create an access path which allows a single user to view/read an account for entities which they have no other access rights to?
  Thanks.

  Hi and thanks for the response.
  The user has 2 security groups.
  The first allows them "All" access to their entity, default and the RD security class for R&D accounts.
  This group means they have read/write access to all accounts, which for their own entity is acceptable.
  If in the second group I give them read access to all entities then they can read all accounts for all entities.
  I need to stop them from seeing all accounts except the RD accounts for the other entities.
  Is this possible?

• Is it possible to give a user read access to an SAP table but to restrict it to a subset of columns?

  Hi,
  is it possible to give a user read access to an SAP table but to restrict it to a subset of columns?
  Thanks,
  Digesh

  Hi Digesh,
  If your requirement is to restrict the excess to specific rows it is possible to use S_TABU_LIN, but it works only for table which contains org units, like plant, company code, etc.
  Please search for S_TABU_LIN if this is your requirement.
  Otherwise please follow Alex's suggestion.
  BR,
  Mangesh

• Is it possible to have a domain/user in BPEL PM with read access only?

  Hi,
  We deploy, undeploy, purge process and instances using the BPEL PM through the domain credentials. Is it possible to create a domain/profile/user in BPEL PM, through which we can only view the processes and the instances deployed in BPEL PM?
  This could be similar to one we have in Oracle Database, wherein we grant read access on some objects to another schema/user.
  Thanks & Regards,
  Prem.

  no, not in 10.1.2.0.2
  Alternative, you can create your own BPEL Console based on the BPEL AP and JSP.

• Error while reading access data (URL, user, password) for the Adapter Engin

  Hi all,
  I encountered a red flag in sxmb_moni and when I click on the flag, I get the following message:
  Error while reading access data (URL, user, password) for the Adapter Engine
  Is there any way I can resolve this? thanks all
  Regards,
  IX

  Possible reason is Adapter engine is not registered on SLD. Check in SLD.
  You can also try restarting J2EE adapter engine and update SLD entries specific to XI domain.
  Lauch Visual admin go to Server > services > SAP AF CPA Cache
  Enter the appropriate values for:
  SLD.selfregistration.hostname (Use fully qualified hostname)
  SLD.selfregistration.httpPort
  SLD.selfregistration.httpsPort
  Finally, if all the above seem to be correct check the userID / pwd for user ID : PI*.

• How to show a database to a user for which only he has the read access?

  Hi All,
  We have a SQL Server and it has say 10 datatabases, we have created a login and also a user which has read access to just one of the 10 databases.
  I used 
  use [master]
  DENY VIEW ANY  DATABASE to msam_test
  To hide all the databases from explorer for that user if he logsin with msam_test.Now, i want this user to see a database named suresh3_test for which he has a read access.
  Can someone please help me if this is achievable?
  Thanks

  hi,
  It is not possible to look at one database if the user only have read access in your scenario.
  either you revoke the DENY VIEW ANY  DATABASE permission, which will list all the databases  for the user
  or  You need to make the user database owner by doing so:
  First delete the user from the database
  Right click on the database and select properties and change the owner to msam_test as shown in the pic below
  But the user will have owner rights on the database.
  Hope this clarifies your doubt. The same was explained in your earlier post as well
  Thanks
  Bhanu

• WPD Devices: Deny read access user policy

  Hi All,
  I have configured the following settings on my main group policy (user policy) and it has linked to my domain. 
  All Removable Storage classes: Deny all access Enabled  
  WPD Devices: Deny read access Enabled  
  WPD Devices: Deny write access Enabled 
  and in one of my sub ou GPO I have configured as "WPD Devices: Deny read access Enabled" (computer policy). when I checked with one user I found found that this user can access USB. there is no other configuration I made on this OU. as per above
  domain policy I have disabled All Removable Storage classes (mentioned above). then how it comes open ?. I just tried one more thing that is when I change WPD Devices: Deny read access in sub OU as Not-configured then USB will be denied. 
  I coudnt find any referrals in online regarding this.. can anyone suggest why it is happening ??

  Hi,
  >>as per above domain policy I have disabled All Removable Storage classes (mentioned above). then how it comes open ?.
  Before going further, what's the operating system we are using? Based on the description, this seems a litter bit odd. Here, had we run
  gpupdate/force to immediately update the policy setting? Besides, we can follow the procedure below to further collect group policy result to check how policy settings were applied.
  1. On domain controller, click Start -> Run, type GPMC.MSC, it will load the GPMC console.
  2. Right click on "Group Policy Result" and choose wizard to generate a report for the problematic computer and user account (please place appropriately). (Choose computer and select
  the proper user in the wizard)
  3. Right click the resulting group policy result and click the "Save Report…" => save report to save the report to a HTML file.
  >>in one of my sub ou GPO I have configured as "WPD Devices: Deny read access Enabled" (computer policy).
  If we try to enable the setting back, will the user still be able to access USB?
  Best regards,
  Frank Shen
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• How can I access my user folder on a second boot partition?

  Hi there. Thank you for reading this. I am at a bit of a loss although I have searched several forums to find someone having the same problem:
  I use my Macbook Pro in the office and at home. To keep things strictly apart and have to separate Time Machine backup procedures, I have divided my harddrive into two boot partitions ('office' and 'private') and installed Mountain Lion on both of them. Now occasionally when I am at the office I would like to access my  user folder on 'private' to retrieve a file from the documents folder there (e.g. a paper I gave in my free time but would like to send to a colleague). Now although I see the 'private' volume, and the other user folder and the Documents folder in it with a red 'No Access' badge, even when I  set read/write permissions via Command-I > Permissions for my current account, I do not see any files in it apart from Microsoft User Data. I have tried enabling the root user but with the sam result.
  Do I really have to shut down the computer and boot with the 'private' boot volume in order to access the files on 'private'>user?
  Looking forward to your suggestions! Thank you in advance!
  Christian

  To solve this issue permanently, is to first disconnect both TimeMachine drives.
  Boot into one partition and consider it history, make a note of everything, apps, export bookmarks, serial keys and files to a regular external drive. (non TimeMachine)
  If on a hard drive, consider the first partition for performance, the second one is going to be slower. (SSD no need)
  Next what you do is boot into the first partition and use Disk Utility to erase (with zero option if a hard drive) the other partition. Then use Carbon Copy Cloner to clone the first partition to the second. (should be about equal sizes or tweak before cloning.)
  Repair permissions on both partitions in Disk Utility.
  Next boot into the second partition and install/uninstall apps and files. etc and set it backup up the way you had it.
  Once your sure, then update TimeMachine for each one.
  Now you will be able to easily access the other bootable partition as long as your logged into the same account name on the first partition., in other words you can access the same named account on both partitions and trade files without rebooting.
  Because it's a clone, you have the same access privileges to the files on the other partition.
  If your a power user, your going to find bootable clones are a much superior option than TimeMachine
  Most commonly used backup methods

• Best practice for select access to users

  Not sure if this is the correct forum to post, if not then let me know where should I post.
  From my understanding this is the best forum to ask this questions.
  Are you aware of any "Best Practice Document" to grant select accesses to users on databases. These users are developers which select data out of database for the investigation and application bug fix.
  From time to time user want more and more access to different tables so that they can do investigation properly.
  Let me know if there exists a best practice document around this space.
  Asked in this forum as this is related to PL/SQL access.

  Welcome to the forum!
  Whenever you post provide your 4 digit Oracle version.
  >
  Are you aware of any "Best Practice Document" to grant select accesses to users on databases. These users are developers which select data out of database for the investigation and application bug fix.
  From time to time user want more and more access to different tables so that they can do investigation properly.
  Let me know if there exists a best practice document around this space.
  >
  There are many best practices documents about various aspects of security for Oracle DBs but none are specific to developers doing invenstigation.
  Here is the main page for Oracles' OPAC white papers about security.
  http://www.oracletechnetwork-ap.com/topics/201207-Security/resources_whitepaper.cfm
  Take a look at the ones on 'Oracle Identity Management' and on 'Developers and Identity Services'.
  http://www.dbspecialists.com/files/presentations/implementing_oracle_11g_enterprise_user_security.pdf
  This paper by Database Specialists shows how to use Oracle Identity Management to limit access to users such as developers through the use of roles. It shows some examples of users using their own account but having limited privileges based on the role they are given.
  http://www.dbspecialists.com/files/presentations/implementing_oracle_11g_enterprise_user_security.pdf
  And this Oracle White Paper, 'Oracle Database Security Checklist', is a more basic security doc that discusses the entire range of security issues that should be considered for an Oracle Database.
  http://www.oracle.com/technetwork/database/security/twp-security-checklist-database-1-132870.pdf
  You don't mention what environment (PROD/QA/TEST/DEV) you are even talking about or whether the access is to deal with emergency issues or general reproduction and fixing of bugs.
  Many sites create special READONLY roles, eg. READ_ONLY_APP1, and then grant privileges to those roles for tables/objects that application uses. Then that role can be granted to users that need privileges for that application and can be revoked when they no longer need it.
  Some sites prefer creating special READONLY users that have those read only roles. If a user needs access the DBA changes the password and provides the account info to the user. When the user has completed their duties the DBA resets the password to something no one else knows.
  Those special users have auditing on them and the user using them is responsible for all activity recorded in the logs during the time the user has access to that account.
  In general you grant the minimum privileges needed and revoke them when they are no longer needed; generally through the use of roles.
  >
  Asked in this forum as this is related to PL/SQL access.
  >
  Please explain that. Your question was about 'access to different tables'. How does PL/SQL access fit into that?
  The important reason for the difference is that access is easily controlled thru the use of roles but in named PL/SQL blocks roles are disabled. So those special roles and accounts mentioned above are well-suited to allowing developers to query data but are not well-suited if the user needs to execute PL/SQL code belonging to another schema (the app schema).