HCM Staging Area, New Users

Similar Messages

• Provisioning from HCM Staging Area to SAP Master question from a newbie

  Hi
  I have built a sandbox idM 7.2 PL3 (MS-SQL 2008/Windows 2003).
  I've had a few stumbles on the way and my latest issue is that I have extracted the HCM data from our ERP (EHP5) HCM instance via LDAP to the VDS.  The transfer completes successfully and the statistics on the HCM_Staging_Area indicate that the records have been added to this Identity Store.
  The event handling on the Entity Type, MX_HCM_EMPLOYEE, has the task +189/Write HCM Employee To SAP Master_ configured.  This Job (and it's tasks) is enabled.  I can see the records (cn = "<SID666SAP 0000001>") with an objectclass of MX_HCM_EMPLOYEE.
  Hiowever, nothing is logged in the System Log or Job Log to indicate that this task has been executed by the load.  The SAP_Master is not updated.
  I'm using the idM for SAP Landscape Configuration Guide (October 2011)  for this installation.
  Am I missing something?  Is there a log file or trace that I can look at to try and figure out what is going on.
  Thanks
  Doug

  Thanks for the reply.
  This is my first attempt at setting up the idM so I've added what I've checked to answer your questions.  I would be glad to hear of any additional checks I could perform.
  Achim:
  - Dispatcher is started:  Yes, Windows Service is running (started).
  - Dispatcher is configured to run standard and provisioning jobs:  Yes, all jobs in Job tab of dispatcher are selected
  - are there any entries within the provisioning queue: I believe so, On the statistics tab of the HCM_staging_area Identity store there are 513 entries provisioning queue size
  - Jobs and Tasks are enabled, assigned to a dispatcher and configured to run as provisioning jobs:  * Yes, the tasks are enabled and the schedule rule is set to provisioning for both tasks*
  Bernd:
  The exported entries are reaching the Identity Store.  I can query the data and the statistics indicate this as well.  The provisioning queue size increases as well.  I have set the SAP_MASTER_IDS_ID to the appropriate id for SAP_Master  (4) and HR_STAGING_AREA_IDS_ID to HCM_Staging_Area Identity Store (5).
  Thankis again.
  Doug

• We are new IPad users and can't access games. The message is invalid address

  We are new users trying to access games. We are getting an error about an invalid address or no address or something similar. Can someone tell us how to get into the games.

  You can't access what games?  Where can you not access these games. Where are you seeing this error message?  What exactly does it say?
  We aren't mind readers here so until you actually provide some specifics as to exactly what you're talking about, nobody could even begin to offer a suggestion.

• How to Define Workbook / Business Ares Security Correctly for new Users

  Hi All,
  Please could you help me understand the Security Model for Workbooks and business Areas as I believe I am very close to understanding it, but missing something important.
  Background Information:
  We are using the predefined Oracle Business Areas (Payables, Receivables, Purchasing & General Ledger) to build our reports on. These are the steps I am taking to try and assign a new user & responsibility access to the existing report.
  1. I create the Report in Discoverer Desktop under the ‘General Ledger Responsibility’ logged in as myself – assume report name = ‘Report_1’.
  2. I create a new Responsibility in Oracle Apps called ‘Discoverer Resource Coordinators’.
  3. I create a new User in Oracle Apps called ‘Joe Bloggs’ and assign the responsibility ‘Discoverer Resource Coordinators’ to the Joe.
  4. Logged in as myself in Discoverer Desktop, Responsibility ‘General Ledger’ I Share the Report (Report_1) to the new Responsibility I just created ‘Discoverer Resource Coordinators’.
  5. In Discoverer Administration, Security, I assign the new Responsibility ‘Discoverer Resource Coordinators’ to the predefined Oracle Business Areas (Payables, Receivables, Purchasing & General Ledger).
  6. In Discoverer Administration I set privileges so that the Responsibility ‘Discoverer Resource Coordinators’ can do all tasks, query data, administer. .etc. etc..
  7. I therefore believe everything has been done and attempt to Login and run the report under Joe Bloggs, but am unable to retrieve any data.
  Help… what am I missing!
  Thanks,
  Lance
  Message was edited by:
  Lance

  Dear All,
  This has now been adjusted according to your recommendations but to no avail.
  Myself and Lance have ensured that this new responsibility has unlimited access to all the existing Business areas to eliminate joins within folders not being recognised, we have also ensured that the workbooks that have been created are shared with the correct responsibility.
  I have thoroughly tested this set up by logging in as this new responsibility within Disco. Client to try and retrieve data in a new Workbook, but even for the simplest of queries this fails.
  It seems that there may be a problem with the Responsibility linking to the EUL, could this be due to the new responsibility being created after the Current EUL was set up?
  Does anyone have any information or knowledge where this could happen?
  Regards
  Si

• My husband and I are new I phone 4s users.  We share an e-mail address and really don't want to have another one.  Is it possible to share this address on the I phone apps and have different passwords?  If not, can we use the same password and email addre

  My husband and i are new iphone 4s users.  We share an email address and would like to keep it that way.  can we register the app store on our ohones using the same email address but different user ids

  No.
  However... Have a look.. Here-

• The user acct my apple was connected to no longer works (corrupt).  My Apple TV is still synced to that account and all of my recent purchases are going to that username.  Does anyone know how to get all of the purchased items back and to the new user?

  The user profile my appleTV was synced on my computer to no longer works (corrupt).  My Apple TV is still synced to that profile and all of my recent purchases are going to that username.  Does anyone know how to get all of the purchased items back and to the new user (same computer)?  I created a new user on my computer and moved the itunes folder to the desktop but never changed the path to which the apple synced to.  Now I can only see old items I purchased before the user profile went bad.  PLease help!

  Welcome to the Apple Community.
  Changing the library the Apple TV is synced with will delete all synced content from the Apple TV, but it won't delete purchased content.
  You should be able to change the library, resync any content you want and transfer your purchases back to the new library.

• New users are not updated in Outlook address book (Offline)

  Hi All,
  We are having an Exchange 2010 environment. from few weeks we are experiencing this issue. When we create new user or change the name of a existing user, it is not updated in outlook address book. Can anyone help me to sort this issue?.
  Regs,
  Sachitha.

  What is the Outlook client you are using? Is it 2003 or 2007+
  You are right, you don;t have to update the OAB manually, the kind of issue you are facing is very know (As far as I experienced). After you update the OAB manually, check the issue and it should be fine.
  After that create a Test User and check in Outlook if you see it populated.
  Cheers,
  Gulab Prasad
  Technology Consultant
  Blog:
  http://www.exchangeranger.com    Twitter:
    LinkedIn:
     Check out CodeTwo’s tools for Exchange admins
  Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

• New Portal User options are disabled when trying to create a new User

  Hi All,
  I am trying to create a new portal user profile using the administrator login. While doing that, I am getting all the options ( used to create the new user ) as disabled. Can anybody let me know the reason & solution of such a problem.
  or
  Anyone can provide me the document on how to create the new profile on portal. Thanks.
  Best Regards,
  Chander Kararia
  Edited by: Chander Kararia on Jan 15, 2009 7:26 AM

  Hi Chander,
  I just want to know if you are able to modify the attributes of an existing user. If not then you have been assigned the User Admin role (read only). Please check that. If yes then revert.
  Regards.
  Rajat

• New user. Need to know where my email contacts are on my macbook pro and how I can make a group email address

  New user. Email contacts imported to MacBook pro from PC - but I'm unable to call up entire contact list or to make a group emailing contact.

  Assuming you are using Apple's Mail application, contacts are managed via the Contacts application, in your application folder.  As for various addressing methods, including groups, maybe this:
  Mail (Mountain Lion): Address messages - Support - Apple

• OCS 2007 r2 new users are unable to sign in Help!!!

  a little background: we had an issue with our domain controller and had to flash a backup image that we took 2 weeks prior. after we got everything setup correctly again and added users that were not there when we took the image backup. it all seemed
  fine, until we had to add some new hires. now when I add new users and configure them correctly with in OCS and active directory the user cannot sign in. from what I have read it could be a replication error, but when I try to force replication it fails. as
  we rely on this service for our business it is very frustrating. I have ran the validation tool and this is what I get.
  Attempting to login   user using Kerberos
  Maximum hops: 2
    Successfully established security association with the server: User   nancy Domain lj Protocol Kerberos Target sip/Fileserver.LJ.local
    Failed to register user: User sip:[email protected] @ Server Fileserver.LJ.local
    Failed registration   response: [
    SIP/2.0 403 Forbidden
    FROM: <sip:[email protected]>;epid=epid00;tag=af8d4a32c5
    TO: <sip:[email protected]>;tag=1A2FD46AB32C93C71252508422122A62
    CSEQ: 2 REGISTER
    CALL-ID: cd6769facadf4da68a88921dfc5a4807
    VIA: SIP/2.0/TLS   192.168.0.23:57752;branch=z9hG4bKf130bb10;ms-received-port=57752;ms-received-cid=40200
    CONTENT-LENGTH: 0
    AUTHENTICATION-INFO: Kerberos   rspauth="602306092A864886F71201020201011100FFFFFFFF764B3F8B7D0AE7EC1B6FE36DAA9B10B1",   srand="C0091F30", snum="1", opaque="EE6E2772",   qop="auth", targetname="sip/Fileserver.LJ.local",
    realm="SIP Communications Service"
    ms-diagnostics: 4004;reason="Credentials provided are not authorized to   act as specified from   URI";source="Fileserver.LJ.local";AuthenticatedIdentity="LJ\nancy"
    ms-diagnostics-public: 4004;reason="Credentials provided are not   authorized to act as specified from   URI";AuthenticatedIdentity="LJ\nancy"
    Suggested Resolution: Use the maximum hop count to determine the   server that generated this error. For example, if the maximum hop value is 2,   then it is likely that this error was generated by a server that is 1  
  (immediate target) or 2 hops away. If the target server supplied and the home   server for the user are different check the trust relationship between them.   If the target server is an access edge server then check whether the internal   supported
  domain list contains the domain of this user. In addition, check   the forest-level domain supported list and make sure the user domain is   present. Finally, run the dbanalyze tool on the home server to check whether   the user is homed and
  configured correctly.
    Suggested Resolution: Ensure that the supplied credentials are   appropriate for the supplied user. If the user has been moved recently, run   dbanalyze to ensure that the user is homed correctly.
  Failure
    [0xC3FC200D] One or more errors were detected
  Maximum hops: 2
    Successfully established security association with the server: User   nancy Domain lj Protocol NTLM Target Fileserver.LJ.local
    Failed to register user: User sip:[email protected] @ Server   Fileserver.LJ.local
    Failed registration   response: [
    SIP/2.0 403 Forbidden
    FROM: <sip:[email protected]>;epid=epid01;tag=e91f12148
    TO: <sip:[email protected]>;tag=1A2FD46AB32C93C71252508422122A62
    CSEQ: 5 REGISTER
    CALL-ID: 9ac9e3fe41f64e6587b7e744ef4eabc4
    VIA: SIP/2.0/TLS   192.168.0.23:57752;branch=z9hG4bK53b7532;ms-received-port=57752;ms-received-cid=40200
    CONTENT-LENGTH: 0
    AUTHENTICATION-INFO: NTLM rspauth="010000002A86488630F580CBB5BBDB1F",   srand="D34E3231", snum="1", opaque="9FC5005B",   qop="auth", targetname="Fileserver.LJ.local",   realm="SIP
  Communications Service"
    ms-diagnostics: 4004;reason="Credentials provided are not authorized to   act as specified from URI";source="Fileserver.LJ.local";AuthenticatedIdentity="LJ\nancy"
    ms-diagnostics-public: 4004;reason="Credentials provided are not   authorized to act as specified from   URI";AuthenticatedIdentity="LJ\nancy"
    Suggested Resolution: Use the maximum hop count to determine the server   that generated this error. For example, if the maximum hop value is 2, then   it is likely that this error was generated by a server that is 1 (immediate
    target) or 2 hops away. If the target server supplied and the home server for   the user are different check the trust relationship between them. If the   target server is an access edge server then check whether the internal   supported
  domain list contains the domain of this user. In addition, check   the forest-level domain supported list and make sure the user domain is   present. Finally, run the dbanalyze tool on the home server to check whether   the user is homed and
  configured correctly.
    Suggested Resolution: Ensure that the supplied credentials are   appropriate for the supplied user. If the user has been moved recently, run   dbanalyze to ensure that the user is homed correctly.

  Depending on how you rolled back Active Directory, you may have entered a situation called "USN Rollback" where your rolled back DC stops replicating with the rest of the DC's in the infrastructure.
  This will cause issues like what you are experiencing, and much worse in the long term, such as machines getting dropped from the domain, and user password becoming inconsistent, since you're essentially maintaining two copies of your domain that cannot
  talk to each other...
  Here are more details: http://support.microsoft.com/kb/875495
  I'd recommend resolving the underlying AD issue by removing the restored DC from the infrastructure (you may have to force demote and remove metadata). Once AD is 100% functional then you can start troubleshooting OCS sign in issues, but my guess is they
  will resolve themselves once the restored DC is removed.
  Hope this helps,
  Gonzalo

• I have changed computers and the new user of my old computer wants to use itunes. i deauthorised the computer and uninstalled itunes. when he reinstalled itunes all my songs and apps are still there. how do i get rid of them for him?

  i have changed computers and the new user of my old computer wants to use itunes. i deauthorised the computer and uninstalled itunes. when he reinstalled itunes all my songs and apps are still there. how do i get rid of them for him?

  Erase the internal drive and install a fresh OS.
  (104285)

• HT2542 Hi, I created a new user on mac, Admin but i can't use adobe CS6 while the original user is admin too and all programs are running normal. How can i solve this problem?

  Hi, I created a new user on mac, Admin but I can't use adobe CS6 while the original user is admin too and all programs are running normal. How can I solve this problem?

  Hi Amanda,
  Software applications are usually installed in the Applications folder on the Macintosh HD and are accessible to all users.
  I would advise you to check the Applications folder and see if your software is in there.
  Next step would be to Control Click or Right Click on the application and choose "Get Info" and make sure the permissions are set to "Read & Write" for all users. The article below provides more details:
  Troubleshooting permissions issues in Mac OS X
  http://support.apple.com/kb/ht2963
  You may need to contact Adobe Support if this does not resolve your issue:
  http://helpx.adobe.com/photoshop.html
  Hope this information helps!
  - Judy

• New users are getting "cntl_error" whenever login into the portal

  Dear Experts,
  New users are getting "cntl_error" whenever login into the portal. They are accessing .par application. I have read so many threads, but unable to find exact solution.
  I have tried in my browser with the user login, then no error. But the user login there end then its giving "cntl_error" error.
  Problem with Internet Explore Browser? Any additional setting required for users browser?
  Could you please help me, how to resolve this error.
  Thanks in Advance.
  Regards,
  Vijay.

  Hi Vijay,
  Check this thread - "CNTL_ERROR" raised,error key: RFC_ERROR_SYSTEM_FAILURE- Show Team Calendar , this might help you on what you are looking for.
  Regards,
  Sen

• New users with Global Password Policy requiring password "reset on first user login" are still prompted to reset password after entering incorrect password

  The setup:
  We have the option "Password must: be reset on first user login" enabled in the Global Password Policy on our 10.9 / Mavericks server. We import new user accounts into Open Directory via a delimited text file and include a default password for each user.
  What I've observed and tested:
  When a user attempts to log into a computer that's bound to our Open Directory for the first time, they can enter anything in the password field and still receive the prompt to reset their password. They are never notified that they entered their default password incorrectly. The password reset will then fail (as it should), but they still aren't notified that this is the reason for the password reset failure. To put it another way: Seeing the prompt to reset your password would reasonably imply that you entered the default password correctly, but that's not the case at all.
  The question:
  Is this expected behavior? If it is, it doesn't seem logical. If this was the case in OS X Server 10.3 through 10.7 I never noticed it. Can anyone corroborate this with their own setup? Thanks in advance.
  -- Steve

  Some follow up questions:
  - How did you migrate (dsmig ldif or binary import)
  - Did the accounts in .x have any custom password policies set?
  For a "new" and a migrated entry, can you check if a passwordpolicysubentry is configured?
  (search as directory manager and fetch the attribute)

• Documents that are park in FBV0 do not update with the new user name when

  Hi,
       I need to find out why documents that are park in FBV0 do not update with the new user name when any changes are made.  Also when we park using MIR7 and make changes to the documents at a later time the document updates with the new users name.
  Requesting you to please suggest what could be the reason.
  Earliest reply will be highly appreciated,
  With regards,
  Rj

  Hi,
      I have checked this in system. I posted one Parked invoice using T.code FV60 and there i appeared my name because i created. But after some time one of my collegue changed the reference and text field with his login i.d. But still in the invoice it is showing as my name whereas if we go to the environmnet, there in the changes we can see what are the changes done and it is appearing my collegues user i.d. But in the main invoice it is still appearing my name.
  Regards,
  Rj.