GetView for an LDAP organization

Hi,
I'm trying to executte getView to instantiate a ResourceObject and populate it with data needed to create an organizationUnit into an LDAP. My reason for instantiating a ResourceObject instead of an Org view is that Org view does not incorporate extended attributes in the LDAP schema like countryName, stateOrProvinceName).
When the following code is exeuted, the view returned is always null.
<Action id='0' application='com.waveset.session.WorkflowServices'>
<Argument name='op' value='createView'/>
<Argument name='authorized' value='true'/>
<Argument name='subject' value='Configurator'/>
<Argument name='type' value='ResourceObject'/>
<Argument name='viewId' value='ResourceObject'/>
<Variable name='view'/>
<Return from='view' to='newOrg'/>
</Action>
Any pointers on the parameters that must be passed to 'getView' in order to get back an organization unit?
kamtheman.

shocked to not receive any answer at all on this subject

Similar Messages

  • User attributes are not available for not root organizations

    Hello,
    my scenario: I have following organizations in IDM: Top; Top:Economy; etc...
    I created Admin role "Economy director" with this settings:
    Controlled Organizations - "Top:Economy"
    Capabilities - "Account Administrator" and "Waveset administrator"
    Now I assign this role to user A. This user A is in organization "Top:Economy" and he tried to edit user B in "Top:Economy". When I log in as user A I see in admin interface "Accounts->List Accounts" only Economy organization. In this organization I click on user B and select tab "Attributes". But here is no global attributes to change.
    When I change "Economy director" role - Controlled Organizations to "Top" then user A can change global attributes of user B. But now user A can change everybody attributes in whole organization tree.
    It's correct? I need to set user A to change attributes only for users in organization "Top:Economy".
    Thanks for advice.
    Petr

    This sounds like a question for forum: Sun Java System Identity Manager
    But anyways... the "Attributes" tab is a collection of all the unreferenced attributes of all the resources assigned, it has some special behaviors.
    You should have been able to change fname, lname, email of User B as User A (UserA is assigned AdminRole with Org & Capabilities assigned as described, without Top assigned). If not, something basic is not wired between User A and the AdminRole. Possibly it's the version in use?? But, if attempted against Oracle Waveset 8.1.1, this should be functionally straightforward to get working...
    The Attributes Tab would only have attributes listed if there were roles or resources assigned with attributes the admin was able to see "in-scope". A resource with attributes (e.g. LDAP resource with a groups attribute) must be scoped for the administrators in the AdminRole to see/manage them per assigned capabilities.
    In the example, a resource with attribute "country" scoped into Top:Economy would allow UserA to edit UserB, update the "Attributes" Tab "country" attribute.
    Edited by: gregoatwaveset on Oct 13, 2010 8:09 PM

  • How to Disable Group Manager Tab for Specific OU(Organizational Unit)

    Hi All,
    How can i disable Group Manager Tab for particular OU(Organizational Unit) in OAM 10.1.4.0.1? Where should i configure to disable this particular stuff?
    Can someone please give suggestions on this issue?
    Thanks,
    Ganesh

    Hi Ganesh,
    If you have many OUs under the searchbase that you want to include, but one that you want to exclude, then you could add a filter to the Group Manager tab (in Identity System Console/Group Manager configuration/Tabs menu item) like:
    (!(ou:dn:=mygroup))
    where mygroup is the ou that you want to exclude
    Depending on your ldap sctructure, it may be more appropriate to add searchbases that you want to include rather than use filters to exclude those that you don't want.
    Regards,
    Colin

  • Exact syntax for the LDAP Username Edit Function

    Hi,
    I have followed the How-To on setting up LDAP as an authentication method but I am having trouble specifying the "Username Edit Function".
    I have a database table which contains a list of user email addresses and associated distinguished name (dn) as stored in an external LDAP...I populated this table using DBMS_LDAP. I want to allow the user to enter his/her email address and email password and execute a small lookup function (GET_DISTINGUISHED_NAME) to fetch the corresponding DN and pass it along to the built-in LDAP authentication.
    I have tried several things to get this to work such as:
    "get_distinguished_name(p_username)" - Returns ERR-10412 and then ORA-06550: line 2, column 1: PLS-00801: internal error [22503] ORA-06550: line 2, column 1: PL/SQL: Statement ignored.
    "get_distinguished_name(p_username);" - same as above.
    and so on. Rather than list each and every attempt here, could someone tell me what the syntax should be for specifying this function call?
    Thanks in advance,
    Ted

    Hi, Sergio
    Thanks for this. I had read the "Using LDAP for Login Authentication" document but I guess I did not correctly understand the "Enter 'return your_function;'" instruction properly...I thought I had to pass p_username as a parameter to my function. After ensuring that "p_username" was the name of the parameter in my function definition, I hit another error but another post in this forum showed me how to fix that issue (Re: Error ERR-10416 Error executing wwv_flow_custom_auth_ldap.authenticate Nov 20, 2003 5:24 PM ) and I am now able to get the LDAP Tool to authenticate okay.
    Do you think I can dynamically set the value for the "LDAP Host" field? We actually have two different email systems (results of a recent merger) and I'll need to find a way to have my LDAP authentication go against one or the other, depending upon what organization they were originally from. I can get this LDAP Host IP Address from my database tables but I am not sure how I could set it within the Authentication Scheme. Could I do something in the "Pre-Authentication Process"?
    Ted

  • How to create a configuration file for open ldap.

    hi,
    I have installed open ldap on my machine. Now I want to configure it to NetWeaver.
    For this, I started configuration through configtool utility of NetWeaver. While configuring, we need to select or upload configuration file. But now as it is open ldap we need to write our own config file.
    I tried it by selecting dataSourceConfiguration_ads_deep_readonly_db.xml  as a configuratio file. it shows successful test connection but the user which  I have created is not appearing in UME store.
    Does any body having solution for this?
    I am trying to solve this problem from two days. I really appriciate one who will sove this problem

    Well the configuration file you chose does not allow users created in NetWeaver to be created in the LDAP.  That's why it's a "readonly" configuration.  I would guess that you need a custom configuration file specifically for open ldap.
    This should help get you started on a custom configuration file:
    http://help.sap.com/saphelp_nw2004s/helpdata/en/b7/14d43f2dd44821e10000000a1550b0/frameset.htm
    Then again, if the only problem with the .XML file you chose is that you can't write to the LDAP, give the dataSourceConfiguration_ads_writeable_db.xml configuration file a shot.

  • Creation of Material for multiple sales organizations

    Hello,
    is there a way to create a material for one sales organization and that this material can easily be copied
    to other sales organisations? Now it takes a lot of time to create the materials for different sales organizations with
    transaction MM01. Thanks in advance,
    Ivo

    is 5 seconds a lot of time?
    make use of copy from fields in MM01 initial screen, enter as copy from material the material number you want enhance with a new sales org view.
    At the organisation pop-up make sure you enter the copy from sales org and plant on the right.
    next step is just to go into the material and click save button.

  • How I restrict Scheduling agreement type for specific Purchase organization.

    Hello Experts,
    I have created Scheduling agreement type (ZLT). I want to restrict this agreement type for specific purchasing organization.
    I have search many threads but I didn't get solution.
    Is it possible through Configuration or user exit.
    Kindly give me solution in details.
    Thanks,
    Ranjit Kumar.

    hi,
    I don't think that there is standard configuration to restrict Purchasing document type for purchasing group. you can restrict this trough user authorization or you can make user exit development.
    Regards,
    mukesh

  • Approval workflow for creation of organization

    Hi,
    I need to configure an approval workflow for the creation of organization. When the admin tries to create a new org, the approval should go to a admin group. The org should get created only once approval is done. I have configured an approval workflow for the Xellerate Organization resource object. I have created an unconditional task where the assignment tab has the admin group. When I test it, the org gets created without going through the approval process. Could someone please tell me what am I missing?
    Thanks,
    Supreetha
    Edited by: Supreetha on Jan 22, 2011 8:38 AM

    You'll have to raise request for Dummy Organization. It's Order for Organization so will not appear for user.
    I am not sure the full flow/complete requirement of your.
    APMU, you want approval while creating Organization into OIM.
    This is not possible OOTb when you create ORg in OIM.
    You'll create 1 dummy Org
    1 Dummy RO "OFO".
    Attach one Object Form with this RO.
    Raise request for Dummy Org and Give the name of Org on the object form for which you want approval.
    In the provisioning workflow, use OIM API to create Org into OIM.
    Done !!!

  • How to disable IFD for a particular organization in MSCRM 2013?

    Hi All,
    We have a requirement to disable IFD only for a particular organization. Does MSCRM support IFD per organization?
    Thanks in advance.
    -Jai

    You cant disable IFD for a particular organization considering that its the servers which are configured for IFD and not the organizations.
    Regards, Abhishek Bakshi If you find this post helpful then please Vote as Helpful and Mark As Answer. Check my blog on https://mydynamicscrmblog.wordpress.com/

  • Vendor Blocked for Local Purchase Organization

    Hi,
    I have checked the vendor details in SRM and ECC. The vendor is not locked in SRM & ECC, still the User is getting the Error message that Vendor Blocked for Local Purchase Organization.
    Please suggest.
    Regards,
    Lovkesh

    Hello,
    To prevent a shopping cart being created with blocked vendors, you shall
    make an implementation in BBP_DOC_CHECK_BADI. This badi is called for
    each refresh of ITS screen. Here
    Call FM BBP_ITEM_GETDETAIL by supplying IV_DOC_GUID
    The FM will return among others a table E_PARTNER.
    select  the corresponding partner related to E_PARTNER from table BUT000
    Check weather the BUT000-XBLCK and E_PARTNER are matching
    If yes, Fill ET_MESSAGES with an error message.
    I hope this information help.
    Thanks and regards,
    Gaurav

  • User can see all resources, not only Permitted for his/her Organization

    Hi,
    I have set three self-serviceable resources as Permitted Resources for a specific organization. So if I click on Permitted Resources for that organization I can see only those three...
    When an user of that organization clicks on Request New Resources, all self-serviceable resources are listed to the user, not only the Permitted Resources. I thought the user could see only the permitted resources...
    If I log as sys admin and Request Resources for an user of this organization, I can see only the three permitted resources.
    I saw the sql statement that OIM run to list the resources:
    select
    obj.obj_key,obj_name,obj.sdk_key,sdk_name, obj_order_for,obj_auto_prepop, obj_type,
    obj_allow_multiple, obj_self_request_allowed,obj_autosave,obj_allowall,
    obj_rowver, obj_note,obj_autolaunch
    from obj obj
    left outer join sdk sdk on obj.sdk_key = sdk.sdk_key
    where obj.obj_key in
    select distinct obj.obj_key from obj obj
    left outer join sdk sdk on obj.sdk_key = sdk.sdk_key
    left outer join acp acp on obj.obj_key = acp.obj_key
    left outer join oba oba on obj.obj_key = oba.obj_key
    where
    obj.obj_self_request_allowed='1' or obj.obj_key in
    select obj_key from acp where act_key in
    select act_key
    from usr
    where usr_key= 5 and acp_self_servicable = '1'
    ) and
    obj.obj_order_for = 'U' and
    (obj.obj_type='Application' or obj.obj_type='Generic') and
    obj.obj_key not in
    select pop.obj_key
    from pop pop, pol pol, pog pog, ugp ugp, usg usg
    where
    pop.pol_key=pol.pol_key and
    pol.pol_key=pog.pol_key and
    pog.ugp_key=ugp.ugp_key and
    ugp.ugp_key=usg.ugp_key and
    usg.usr_key in (5) and
    pop.pop_denial='1'
    ) and
    obj.obj_key not in (
    select distinct obj.obj_key
    from obj obj, obi obi, ost ost, oiu oiu
    left outer join orc orc on oiu.orc_key=orc.orc_key
    where
    oiu.obi_key=obi.obi_key and
    oiu.ost_key=ost.ost_key and
    upper(ost.ost_status) <> 'REVOKED' and
    obi.obj_key=obj.obj_key and
    oiu.usr_key in (5) and
    obj.obj_allow_multiple='0'
    ) and
    obj.obj_key in
    select distinct obj_key
    from pkg
    where pkg_type='Provisioning'
    As you can see in the query above, if I change the snippet below the result is what I expect.
    obj.obj_self_request_allowed='1' AND obj.obj_key in
    Did I miss to set something or doing something wrong?
    Thanks,
    Renato.

    Sorry, but I do not understand your last reply. You mentioned the following:
    for option B, even when option A is unchecked, you can set self-request only for a specific organization when assign permitted resources.
    Isnt this what you wanted? You should set the resource as permitted resources in all the organizations whose users can request that resource. I have implemented this and it works just fine. It works for both types of requests. a) My resources -> request new resources and b) Requests -> Resources -> Grant resources.
    In case of b, depending on the organization to which the selected user belongs, the Resource is displayed. all resources are not displayed.
    So the solution is to uncheck in RO and put the resource under specific organizations permitted resources and make it self-requestable. It should work fine. Let me know your exact issue if it does not work this way.

  • Where can I find an LDAP Editory for Open LDAP

    where can I find an LDAP Editory for Open LDAP... i was using LDAP Editor but it does seem to work any more... where can I find a free download for the LDAP editor for windows...

    I put in the following info in the connection section for the
    lDAPbrowser but am not able to connect to the server. I get error
    saying Failed to connect to ldap://165.252.58.78:389/
    Host: 165.252.58.78
    Port: 389
    Version: 3
    Base DN: what do I put here
    and do I select SSL
    or Anoymous bind
    User Info
    User DN: what do I put here
    and
    I am connecting to ldap through my app with the following criteria:
    url=ldap://165.252.58.78:389/
    ldapHost=165.252.58.78
    ldapPort=389
    ldapVersion=LDAPConnection.LDAP_V3
    ldaploginDN=cn=Manager,dc=accuserverx,dc=com
    ldappassword=password

  • Purchasing group transacting for multiple purchasing organizations

    Hi,
    I have a requirement in which i have certain purchasers defined as purchasing groups in my organizational structure. However, these purchasing groups perform sourcing transactions (e.g., bid invitation, auction) for multiple purchasing organizations. In the organizational structure, these purchasing groups are created under an organizational unit that isn't defined as a purchasing organization. They appear "free-floating" since they are not assigned to a particular purchasing organization.
    In sourcing transactions (e.g., bid invitation, auction), the list of purchasing groups from which I can choose from depends on the purchasing organization I select. Is there a way to include the "free floating" purchasing groups in the drop-down list?
    Thanks and regards,
    Joy

    Hi Joy,
    Its difficult to have a P.Grp with out a P.Org assignment.
    My idea would be:
    Assign this P.Grp to one of the P.Orgs (lets say POrg1). Add the entire root as the responsibility of this P.Grp.
    When the Purchasers in this P.Grp create a Bid Invitation, the POrg1 will be defaulted always.
    At the time of saving the Bid Invitation, use the "BBP_PGRP_ASSIGN_BADI" BADI to overwrite POrg1 value with any other POrg you desire.
    You may test it out.
    Cheers,
    Akash

  • Changes of the ZIP Code for the sales organization

    Hi All,
    I have done the changes of the ZIP Code for the sales organization by using the t code ovx5  the change of zip code in adress but when i rechek the changes in the order acknowledgement output there i can see the old zip code only.
    Please help me how to make the change the zip code to SO, so that i can view that in output.
    need to update pls help..
    Thanks for help
    Raj.

    Hiii
    Check weather your developer hardcode the sales organization pin code: else check the logic weathe Sales org Pin Code is getting from following logic. Go to table TVKO and put ur sales org number in VKORG field  then execute
    Get the ADRNR number and pass the same in ADRC table and get the POST_CODE1 as pin code number (give same logic to your abaper)
    Regards
    Shambhu Sarkar

  • Pros and Cons for single sales organization and multiple sales organization

    Hi!
    Does anybody have a good data of Pros and Cons for Single Sales Organization vs. Multiple Sales Organization.
    Thank you!

    Hi,
    Actuall it all depends on the business process.
    I will explain the answer to you through a practical example
    like Ford, it has sales and services all across globe.
    It is not advisable to manage all of its activities under only one sales organization, say Ford Inc.
    So what it does is de-centralises the whole process according to the country, region so that the whole process is divided and hence can be managed more effeciently.
    Hope this helps you in understanding the basics.
    One sales org always provides you with very less data to update and maintain, while many sales org makes the scenario more complex.
    One sales org always gives you the flexibility to bring any changes to the current scenario, while in multiple sales org to bring a change its a tiresome job.
    These are some of the advantages and disadvantages of one to many sales org.
    regards,
    Siddharth.

Maybe you are looking for

  • Erro no envio de notas

    Prezados, Após enviar a nota para a mensageria, e caso ocorra algum tipo de erro na validação do XML a mesma é retornada com o status de 999. Após ajustar a causa do erro, a partir do monitor, seleciono a nota e executo a opção u201CReinicializar sta

  • Media Center Deluxe II

    I've lost my Media Center Deluxe II Original CD. Will it be possible for me to get a copy of it again. My GFX is FX5600-VTDR256. I can post out my card serial no. or take a snapshot of my gfx card for verification purposes. I need to reinstall my HTP

  • Execute xquery in a xml tag.

    Hi there, I have the following XML file: <Bookstore> <Book> <book_ID>1</book_ID> <query>collection('test.dbxml')/Bookstore</query> <quantity_in_stock>28997</quantity_in_stock> <popularity>20564</popularity> </Book> </Bookstore> I need to execute the

  • Help with installing trail

    i need help installing my after effects cs5 on my windows xp serves pack 2. when i go to setup it says that i need to exit installer and try again but that does not do any thing so i just click the ignore and continue button. once the installer is do

  • How do I ungroup my tabs so that they all show again?

    I accidentally hit group your tabs and the several I had open disappeared. How do I ungroup them so that they are again displayed??