General Authorizations for Iphone User
I have only been able to make use of the Iphone IC for SBO 8.8 with superusers. Is it possible to use it with a profesional user but no superuser acces ?
Hi Hector,
Mobile v1.1.1 and before require a superuser.
Upcoming mobile version should support both regular users and superusers, when the new version will be released it will be announced from the Service Marketplace.
Regards,
Trinidad.
Similar Messages
-
How to set the same General settings for all users
Hi Experts,
How can i set the same general settings for all users e.g. marking the checkbox "Display header" to true for all users? General settings are possible under User Settings Button.
Regards,
Arti.Hi Arti!
You can default user settings in a PFCG role, in the "personalization" tab.
If you have a PFCG role that is common to all your users, you can set the default values here.
However it does not prevent them to change these settings later, except if you modify the "user settings" fields properties in cProjects application.
Matthias -
How do I make a PDF form that is fillable for iPhone users?
I recently created a fillable form using Adobe LiveCycle and I need the form to be accessible for iPhone users. I downloaded the Adobe Reader app on my iPhone, but I am not able to access any of the drop down menus and the fillable fields do not appear.
Can someone help me resolve this problem?
Thank you!!Alright, I don't think I'm going in the right direction with this. It seems to be very difficult to make a form from scratch using Adobe Pro, as compared to LiveCycle. Is there an easier way to accomplish my goal without having to re-create this entire form in Pro?
The LiveCycle form I made was made from scratch and contains many text boxes and drop down menus, I'd rather not have to recreate it if I don't have to.
I appreciate any help. -
Authentication and authorization for AD users in UCM11g
Hi all
we are using webcenter content server 11g. I read some where that for 11g users authentication is done in weblogic server environment, mean content server for 11g in now managed by weblogic server only, am i right?. we have successfully integrated Active Directory with weblogic sever and user of AD are able to log-in UCM but they don't have any role like contributor or Admin. How to do this role mapping for AD user in UCM i.e. authorization for these users. Please provide any guidence on this issue any doc or blog, we are new to webcenter suite.
Thanks
SomeshAs you already have weblogic integrated with AD, remains only role mapping and Single Sign-On integration. For authorization, AD must contain groups with exact names as roles in the Content Server. Those groups should be where Group Base parameter in the weblogic ActiveDirectoryAuthenticator point (like OU=Roles,OU=Oracle,DC=example,DC=com). Assigning AD user to the AD group named contributor, will add contributor role to logged Content Server user.
As for SSO, refer to the:
http://docs.oracle.com/cd/E23943_01/web.1111/e13707/sso.htm
and
http://docs.oracle.com/cd/E23943_01/doc.1111/e10792/c05_security.htm#autoId21
Procedure steps are:
Create a user account for the hostname of the web server machine in Active Directory
Create krb5.ini file, and locate it in the C:\Windows directory at both machines (Domain Controller and WLS host)
Generate the keytab file
Create a JAAS Login File named krb5Login.conf
Put both keytab and krb5Login.conf files to …/user_domains/domains/my_domain/
Configure the Identity Assertion Provider
Adjust Weblogic Server startup arguments for Kerberos authentication
Redeploy CS (and optionally other servers) server with the documentation given deployment plan
Check web browser configuration (IE and Firefox only)
Take a deep breath and test
If successful have a cake and cup of coffee else goto step one
Regards,
Boris -
No authorization for activating user status PLIM
Dear Gurus,
I'm a newbie to SAP. Currently i'm facing the problem with Tcode KO01 while i'mtrying to create Internal Order. I can initialize the program but after i entered the Order type and pressed enter. Error msg "No authorization for activationg user status PLIM" pop-up. Pls help on this urgently.
Thanks.Dear Payal,
I checked /nSU53 just after i got the error msg. It said authorization check failed. Authorizaton object B_USERST_T status management: Set/Delete User Status using Transaction.
Activity:01
Authorization key: <Dummy>
Object Catagory: ORC
Status Profile: 00000002
What should i do after this??? -
Authorizations for background user
Hi everyone,
Is it ok to assign the user(system user) sap_all profile under whom a background job runs. Is it against the security audit policies. or should we assing only those authorzatons that are required to run the program in the background job.
Thanks.
Neha.> Is it ok to assign the user(system user) sap_all profile under whom a background job runs. Is it against the security audit policies. or should we assing only those authorzatons that are required to run the program in the background job.
>
Hi Neha,
You don't need to provide SAP_ALL for any system user id for daily Business you create. And of course it is against Audit policies to provide such access to Background user. This user id should be of type System.
The authorizations for such user ids should be:
SBTCH_NAM Background Processing: Background User Name_
BTCUNAME = <respestive user name that are going to be authorized for Batch Job execution>
SBTCH_JOB Background Processing: Operations on Background Jobs_
JOBACTION = *
JOBGROUP = *
S_BTCH_ADM Background Processing: Background Administrator
This is required for the administrator administering background Jobs.
Also check the following note: Note 101146 - [Batch: authorization object S_BTCH_JOB, S_BTCH_NAM|https://service.sap.com/sap/support/notes/101146]
Also the user needs access to following Authorizations:
S_ADMI_FCD System Authorizations
S_CTS_ADMI Administration Functions in the Change and Transport System
S_LOG_COM Authorization to execute logical operating system commands
S_RZL_ADM CCMS: System Administration
Regards,
Dipanjan
Edited by: Dipanjan Sanpui on Jul 9, 2009 2:21 PM -
For iphone users with att, can you block incoming texts all together? After paying $20 for data i dont want to pay as i go/pay more for texts
SMS is exchanged over the same network as calls - no data involved.
MMS requires data.
iMessage requires the same as email - internet access via an available wi-fi network or via your carrier's cellular data network.
You can disable SMS/MMS altogther with your account by requesting this with AT&T. You can turn iMessage off unless your iPhone is connected to an available wi-fi network. -
Hello,
We are working for authorizations for SNC users.
Currently we have issue wherein SOH and Unresticted stock info is not displayed on WEB UI?
What authorization object we are missing?
We have SNC5.1 customer collaboration.
ThanksHallo,
Display mode for objects C_LIME_SI & C_LIME_LOC.
Regards
Martin -
JMS authorization for default user
Hi All,
I need to configure the JMS authorization for WLS 9.2. I succeed to do it for specific user that determined with access control to JMS Topic resource:
TopicConnection _topicConnection = topicConnectionFactory.createTopicConnection(_user, _password);
Along with it I succeed to create topic connection without sending the user/password:
TopicConnection _topicConnection = topicConnectionFactory.createTopicConnection();
I can't understand why I succeed if I configured the access to a JMS Topic Connection for specific user only. How I can close this access for default user?
Thanks,
Igor.
Edited by igorkh at 10/07/2007 8:30 AMHi,
The user/pass arguments supplied for the createConnection call in WebLogic is only checked for the createConnection call itself, and there's no ACL check -- the call only checks that the user is a valid user. As far as I know there's no direct way to restrict the ability to create a JMS Connection to a particular JMS user (no way to specify an ACL directly). What you can do instead is configure an ACL on the JNDI name of the connection factory. You can also configure ACLs on your destinations (not just the JNDI name for the destination).
For pretty much all API calls (not just JMS API calls), WebLogic generally obtains the implicit security credentials stored in the current thread. The current thread's credentials are initialized either by the user/pass that was passed in the most recent time a Context was created by the application using that same thread, or, if on the server and no context was created, the credential can be supplied as part of the EJB's or servlet's configuration.
These implicit thread credentials are checked in various places when accessing a particular destination, as well as during JNDI lookups (applies if you've configured ACLs in your JNDI tree).
Tom -
BPS retraction (CCA) - authorizations for background user (R/3)
Hi,
I'm trying to retract plandata for statistical key figures from BW to R/3. During data retraction I get an error message in BW. The message is about missing authorities on R/3 side, but without any detailed information. We use the standard backround user for BW => R/3 RFC connections. So my question is, if the background user needs additional authorizations for data retraction? Are there any notes or documentation?
Thanks for help,
TanjaHi,
I remember having faced this issue...
I fixed it by creating a RFC connection for the retraction itself connecting with a service user (S_BWRETR) having profiles SAP_ALL, SAP_NEW.
hope this helps...
Olivier. -
No authorization for backgroung user for log deletion
Hello,
I have included program SBAL_DELETE in a process chain in order to delete expired application logs periodically. But it doesn't work because I get always this message from backgroung monitor: "You do not have authorization to delete all these logs".
If I run program manually via SLG2 it works correctly.
The background user has profile S_BI-WHM_RFC.
Can anybody advice what am I missing?
Thank you.
BranislavHi Branislav
For the administration processes that are bundled in a process chain, you require authorization for authorization object S_RS_ADMWB.
To work with process chains, you require authorization for authorization object S_RS_PC
Check this link
http://help.sap.com/saphelp_nw04s/helpdata/en/e3/e60138fede083de10000009b38f8cf/frameset.htm
Regards,
Naveen -
Dear Experts,
The scenario,in PA30 and also in PA40 HR end user should not have access to edit his own data but he/she can able to view his own data and he should have access to edit,create,copy for other employees. Kindly let me know authorization object for the same.
Regards,
Deepan
Message was edited by: Sikindar AHello
P_PERNR: will prevent or let a user to maintain/see its own data cfr: P_PERNR (HR: Master Data ? Personnel Number Check) (SAP Library - Authorizations for Human Resources)
then depending if you use Contextual Authorization or not
P_ORGIN or P_ORGINCON lets a user to maintain/display the employees' master data.
Cfr:
P_ORGIN (HR : données de base) - Autorisations pour HR (Gestion des Ressources Humaines) - SAP Library
https://help.sap.com/saphelp_erp60_sp/helpdata/en/4c/197c8fad6671459b9dde3e915336b8/content.htm
regards
Hadrien -
I want to create a super user on the production server who can create and save the queries only (no other authorization). He can save queries only under $TMP.
For that I have already created role for super user in the transaction PFCG and in business content S_RS_COMP and S_RS_COMP1 I have given all authorization.
Now User is able to create the query, but when He is going to save it the Error message is coming- 'No authorization for create and change'.
Please suggest what I am missing.
Regards,
DheerajHi Dheeraj,
Have you given auth as per http://help.sap.com/saphelp_nw04/helpdata/en/41/05453caff4f703e10000000a114084/content.htm : Analyst3? -
MIR4 Invoice - Restrict POST Authorization for Some Users
Hi Experts,
We are doing Invoice Release Workflow (MIR7) With 3 level Approval. When the document goes for approval in EDIT mode (MIR4) to multiple Levels anyone can change the document but the post authorization should be given only to the manager.
We created a Role with authorization object M_RECH_WRK and enabled only (3 Display and 77 Pre-Enter) still post button could not be disabled for some users. Kindly suggest a way to disable POST Option in MIR4 only for certain Users.
Regards,
DheepakHi Dheepak,
Refer to these thread:
[Disable post option in MIR7|Disable post option in MIR7;
[ POSTING ISSUE|MIR7 posting issue;
Hope you find these useful.
Reetesh -
Object level authorizations for deffirent user restrictions
Hi
i have 1 object, this object have only 3 values?
i need authorizations for this object at report level?
rsa1- i keep authorization relevant?
rsecadmin i can include this object , here i need give from value and to value? i have 3 values only? suppose user 1 want only 1 value? user 2 need 2 and 3 value? how can i restrict like this ? ple let em knowHi Suneel,
Go to RSECADMIN.
Here, in maintain authorizations, create authorization for your characteristics along with the special characteristics.
i.e. in your case, create authorization(assume 0plant is marked as authorization relevant)
0PLANT
0TCAACTVT
0TCAIPROV
0TCAVALID
Double click on each characteristic to assign them the authorized value set.
Thus, you will create two authorizations
Z_PLANT_1
0PLANT...................I..EQ..............1
0TCAACTVT.............I...EQ..............3
0TCAIPROV.............I...EQ..........ZPROVIDER
0TCAVALID..............I...EQ...........*
Z_PLANT_2&3
0PLANT...................I..EQ..............2
..............................I..EQ..............3
0TCAACTVT.............I...EQ..............3
0TCAIPROV.............I...EQ..........ZPROVIDER
0TCAVALID..............I...EQ...........*
Go to RSECADMIN again in user tab in assignment, assign these authorizations created to the respective users.
Like assign User1 -
>Z_PLANT_1
................User2 -
>Z_PLANT_2&3
Refer the link below for more information
[Analysis Authorization|http://help.sap.com/saphelp_nw70/helpdata/en/66/019441b8972e7be10000000a1550b0/frameset.htm]
Hope this helps,
Best regards,
Sunmit.
Maybe you are looking for
-
Yoga 2 Pro tent mode and auto-rotate not working
I have had a Yoga 2 Pro since June. Recently the Tent mode and auto-rotate features do not work. When I put the Yoga 2 Pro into Tent mode the keyboard and touch pad are still active underneth. However, they shutoff when in tablet mode. Lenovo Transit
-
I get a dialog box with the following: "a copy of firefox is open and only one copy of firefox can be opened at one time." I do not see where firefox is open. How do get back into firefox so that i can read the links that are in my emails? Thank you.
-
Cannot find a simple (or any) solution to this problem. Does anyone know how to change the player label headings on iMovie Sports Team Editor? I don't want to display the players weight, height and age and have no idea how to change the labe headings
-
Bank statement giving error while processing
hi gurus, while processing the manual bank statement the system gives me an error " g/l account 10 does not exist ". how can sort dis error out. help best regards sayeed
-
Report of total invoice per area
Dear Experts, I am trying to make a report using query generator. The report is total invoice per area but I am still failed. here is the query I made: elect distinct OTER.descript, 'invoice per teritory' = (select distinct sum(a.DocTotal) from oinv