How to assign possible agents at security role / CAG level?

Hi Experts, How to assign possible agents at security role / CAG level?

Yes, that's exactly what I'm talking about. In your task maintenance, goto additional data -> agent assignment -> Maintain
Click on th task, click on the assign button. Choose object type 'Role', enter role.
Cheers,
Mike

Similar Messages

  • The security-role-assignment references an invalid security-role: Certifica

    In Oracle Enterprise Pack for Eclipse, I failed to deploy an application in debug mode. The error I noticed in my domain log is:
    weblogic.management.DeploymentException: [HTTP:101168]The security-role-assignment references an invalid security-role: Certificate.
         at weblogic.servlet.security.internal.WebAppSecurity.setRoleMapping(WebAppSecurity.java:180)
         at weblogic.servlet.security.internal.WebAppSecurity.registerSecurityRoles(WebAppSecurity.java:155)
         at weblogic.servlet.internal.WebAppServletContext.prepareFromDescriptors(WebAppServletContext.java:1181)
         at weblogic.servlet.internal.WebAppServletContext.prepare(WebAppServletContext.java:1120)
         at weblogic.servlet.internal.HttpServer.doPostContextInit(HttpServer.java:449)
         at weblogic.servlet.internal.HttpServer.loadWebApp(HttpServer.java:424)
         at weblogic.servlet.internal.WebAppModule.registerWebApp(WebAppModule.java:910)
         at weblogic.servlet.internal.WebAppModule.prepare(WebAppModule.java:364)
         at weblogic.application.internal.flow.ScopedModuleDriver.prepare(ScopedModuleDriver.java:176)
         at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:93)
         at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:387)
         at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:37)
         at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:58)
         at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:42)
         at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:615)
         at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:37)
         at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:191)
         at weblogic.application.internal.EarDeployment.prepare(EarDeployment.java:16)
         at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:155)
         at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
         at weblogic.deploy.internal.targetserver.operations.ActivateOperation.createAndPrepareContainer(ActivateOperation.java:197)
         at weblogic.deploy.internal.targetserver.operations.ActivateOperation.doPrepare(ActivateOperation.java:89)
         at weblogic.deploy.internal.targetserver.operations.AbstractOperation.prepare(AbstractOperation.java:217)
         at weblogic.deploy.internal.targetserver.DeploymentManager.handleDeploymentPrepare(DeploymentManager.java:723)
         at weblogic.deploy.internal.targetserver.DeploymentManager.prepareDeploymentList(DeploymentManager.java:1190)
         at weblogic.deploy.internal.targetserver.DeploymentManager.handlePrepare(DeploymentManager.java:248)
         at weblogic.deploy.internal.targetserver.DeploymentServiceDispatcher.prepare(DeploymentServiceDispatcher.java:159)
         at weblogic.deploy.service.internal.targetserver.DeploymentReceiverCallbackDeliverer.doPrepareCallback(DeploymentReceiverCallbackDeliverer.java:157)
         at weblogic.deploy.service.internal.targetserver.DeploymentReceiverCallbackDeliverer.access$000(DeploymentReceiverCallbackDeliverer.java:12)
         at weblogic.deploy.service.internal.targetserver.DeploymentReceiverCallbackDeliverer$1.run(DeploymentReceiverCallbackDeliverer.java:45)
         at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:516)
         at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
         at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    What I do not understand is that this error remains even though I modified weblogic.xml to remove the following lines:
    <wls:security-role-assignment>
    <wls:role-name>Certificate</wls:role-name>
    <wls:externally-defined/>
    </wls:security-role-assignment>
    I also deleted <MYDOMAIN_HOME>/servers/AdminServer/cache and <MYDOMAIN_HOME>/servers/AdminServer/tmp but this error still showed up when I attempted to deploy the application in Eclipse.
    If I exported the EAR file and deployed it using Admin Console, the application was deployed successfully. But when I deleted it in Admin Console and attempted to deploy it in Eclipse again, the same error occurred and the deployment failed. What could be the reason for this behavior? Is there anything cached somewhere when deploying it in Eclipse? Thanks in advance for your help.

    Hi,
    I know that is an old thread, but just in case... Maybe you could try setting up the DEBUG_OPTIONS in your startManagedWeblogic script and configure a remote debug in Eclipse:
    DEBUG_OPTIONS="-Xdebug -Xnoagent -Xrunjdwp:transport=dt_socket,address=8003,server=y,suspend=n"
    Hope it helps,
    Luis

  • How to list principals in the security role?

    Does anybody know how to list principals assigned to a security role programmatically?
    The role assigment is specified in weblogic.xml files for web applications and
    weblogic-ejb-jar.xml files for EJBs.
    Any help would be much appreciated,
    Margaret

    I think it's not possible. However, what you can do is to assign a role to a
    group (this relationship being statically defined in weblogic.xml) and then
    manipulate the group membership in order to assign users to the role on the
    fly.
    "Margaret Oberc" <[email protected]> wrote in message
    news:3b127763$[email protected]..
    >
    Does anybody know how to list principals assigned to a security roleprogrammatically?
    The role assigment is specified in weblogic.xml files for webapplications and
    weblogic-ejb-jar.xml files for EJBs.
    Any help would be much appreciated,
    Margaret

  • How to assign agent at runtime

    Hello gurus,
    I have a small querie.
    My requirement is when a workitem is received by a possible agent and he is not responding eventhough he receives repeative mail. I want to assign the new agent at runtime when the actual agent is received more than 4 workitems for the same task.
    It means 5th workitem should be diverted to new agent.
    Thanks in advance.
    Please help me out.
    Thanks & Regards,
    Siraj Md.
    Edited by: siraz ahmed on Dec 15, 2009 3:52 PM

    Hi,
    1. specify a counter Variable between the loop and increment the counter once the counter is reached 4
    if Counter > 4 then
    Specify the new agent id in dialogue task 
    You want to assign the agent at runtime means we have two options
    1. Go to SWIA-> Give the dialogue workitem no -> Select Assign possible agents tab -> Specify the agent id at runtime
    2. SBWP ->Select Work item ->Workflow settings ->Maintain Substitution

  • How do I map declared security role to an actual operational one?

    Hello,
    Suppose I have created few security roles at the ejb-jar.xml file of my J2EE application using:
    <security-role>
    <role-name> managers <role-name>
    </security-role>
    Our portal is connected to our LDAP server so the WAS contains all the groups it has over there.
    My question is: How do I actualy map the security role I declared at the deployment descriptor (manager) to an actual group in our organization?

    Hi Roy,
    Are you familiar with thishttp://help.sap.com/saphelp_nw04/helpdata/en/1a/733e401b21e801e10000000a155106/frameset.htm ?
    Best regards, Maksim Rashchynski.

  • How to creating a role configuration key, nd how to assigning it to our bus

    how to creating a role configuration key, nd how to assigning it to our business role?
    advance thanks..

    Hello Suri,
    To create the Role Key
    In the SPRO CRM - UI Framework - Technical Role Definition - Define Role Configuration Key
    Then to assign the Business Role in the
    In the SPRO CRM - UI Framework - Business Roles - Define Business Role
    The field  for the Role Key is Config Key
    Regards.

  • Using weblogic security roles in authentication: weblogic 9

    Hi All,
    I am trying to create a simple application which uses declarative authorization configured in web.xml. I use the simple form based authentication. While trying to deploy my application, I get the error:
    weblogic.management.DeploymentException: [HTTP:101168]The security-role-assignment references an invalid security-role: LTVORole.
    But I have defined the role LTVORole in weblogic using the administrator console.
    below are the details of what I have done:
    Web.xml:
    ========
    <?xml version='1.0' encoding='UTF-8'?>
    <j2ee:web-app xmlns:j2ee="http://java.sun.com/xml/ns/j2ee">
      <j2ee:welcome-file-list>
        <j2ee:welcome-file>login.jsp</j2ee:welcome-file>
        <j2ee:welcome-file>index.html</j2ee:welcome-file>
        <j2ee:welcome-file>index.htm</j2ee:welcome-file>
      </j2ee:welcome-file-list>
      <j2ee:login-config>
        <j2ee:auth-method>FORM</j2ee:auth-method>
        <j2ee:form-login-config>
          <j2ee:form-login-page>/login.jsp</j2ee:form-login-page>
          <j2ee:form-error-page>/error.jsp</j2ee:form-error-page>
        </j2ee:form-login-config>
      </j2ee:login-config>
    <security-constraint>
      <display-name>checkAccountConstraint</display-name>
    <web-resource-collection>
      <web-resource-name>checkAccountCollection</web-resource-name>
            <url-pattern>test.jsp</url-pattern>
            <http-method>GET</http-method>
            <http-method>POST</http-method>
      </web-resource-collection>
      <auth-constraint>
            <role-name>LTVORole</role-name>
      </auth-constraint>
      </security-constraint>
    </j2ee:web-app>Weblogic.xml
    ===========
    <?xml version="1.0" encoding="UTF-8"?>
    <ns:weblogic-web-app xmlns:ns="http://www.bea.com/ns/weblogic/90">
      <security-role-assignment>
        <role-name>LTVORole</role-name>
       <externally-defined/>
      </security-role-assignment>
    </ns:weblogic-web-app>I have created the role in weblogic in the menu
    security realms > myrealm > roles and policies > Global Roles > roles > LTVORole
    Is it the right way to define a role?
    Please help me find where I am going wrong.
    Thanking you all in advance,
    Gireesh

    Hi All,
    I am trying to create a simple application which uses declarative authorization configured in web.xml. I use the simple form based authentication. While trying to deploy my application, I get the error:
    weblogic.management.DeploymentException: [HTTP:101168]The security-role-assignment references an invalid security-role: LTVORole.
    But I have defined the role LTVORole in weblogic using the administrator console.
    below are the details of what I have done:
    Web.xml:
    ========
    <?xml version='1.0' encoding='UTF-8'?>
    <j2ee:web-app xmlns:j2ee="http://java.sun.com/xml/ns/j2ee">
      <j2ee:welcome-file-list>
        <j2ee:welcome-file>login.jsp</j2ee:welcome-file>
        <j2ee:welcome-file>index.html</j2ee:welcome-file>
        <j2ee:welcome-file>index.htm</j2ee:welcome-file>
      </j2ee:welcome-file-list>
      <j2ee:login-config>
        <j2ee:auth-method>FORM</j2ee:auth-method>
        <j2ee:form-login-config>
          <j2ee:form-login-page>/login.jsp</j2ee:form-login-page>
          <j2ee:form-error-page>/error.jsp</j2ee:form-error-page>
        </j2ee:form-login-config>
      </j2ee:login-config>
    <security-constraint>
      <display-name>checkAccountConstraint</display-name>
    <web-resource-collection>
      <web-resource-name>checkAccountCollection</web-resource-name>
            <url-pattern>test.jsp</url-pattern>
            <http-method>GET</http-method>
            <http-method>POST</http-method>
      </web-resource-collection>
      <auth-constraint>
            <role-name>LTVORole</role-name>
      </auth-constraint>
      </security-constraint>
    </j2ee:web-app>Weblogic.xml
    ===========
    <?xml version="1.0" encoding="UTF-8"?>
    <ns:weblogic-web-app xmlns:ns="http://www.bea.com/ns/weblogic/90">
      <security-role-assignment>
        <role-name>LTVORole</role-name>
       <externally-defined/>
      </security-role-assignment>
    </ns:weblogic-web-app>I have created the role in weblogic in the menu
    security realms > myrealm > roles and policies > Global Roles > roles > LTVORole
    Is it the right way to define a role?
    Please help me find where I am going wrong.
    Thanking you all in advance,
    Gireesh

  • How to assign agent assigment in release strategy WS20000075?

    I have copied  the standard workflow WS20000075 and then created Workflow template and in trigering events tab of the wf template, I have binded the event RELEASESTEPCREATED.I have also done the SPRO settings for release strategy,i.e,that is I have assigned the users for each release code in table T16FW and mentioned the role resolution in the as 1 in the table T16FC.
    The workflow is working fine but I am a bit confused with the agent assigment in the tasks TS20000166 and TS20000168.I have noticed one thing that in the task TS20000166 a default rule 20000027 - Person responsible for PO release,but it does not seem to work.The TS20000168 does not has any default rule for agent.
    Can anyone guide me how i can do the agent assignment for this workflow.
    Message was edited by:
            Babar Haroon

    There is no requirement for default rules.
    Agent for task TS20000168 is assigned in the workflow where it is used.
    If the default rule for task TS20000166 does not seem to work you should first of all check all the obvious potential problems, and secondly (if you haven't found out what the problem is) tell us <u>why</u> you have concluded that it does not work.
    Check:
    1) that the task has either been defined as general task or has possible agents assigned
    2) that your customizing for the release code has "1" as workflow configuration and that there is a valid agent assignment for the code - alternatively "9" as config and the user exit is implemented
    3) that there is overlap between agent assignment for the release code and possible agents for the task

  • Why security-role-assignment is required ?

    Hi all.
    We develop EJB application which uses:
    * declarative security using <method-permission> in ejb-jar.xml
    * our own RoleMapper SSP, which take mapping data from DB
    (our Mapper doesn't use weblogic-ejb-jar.xml at all)
    When I deploy my app without <security-role-assignment>
    in weblogic-ejb-jar.xml I receive the deployment exception:
    <quote>
    The security-role MY_ROLE, defined in ejb-jar.xml,
    is not correctly mapped to a security principal.
    Make sure the security-role has a corresponding
    security-role-assignment element in the
    weblogic-ejb-jar.xml descriptor.
    </quote>
    Yes, this is absolutely correct --
    I didn't define the mapping in *.xml advisedly,
    because of it is defined in DB and my own Mapper
    retrieves data required for role mapping from DB,
    not from descriptor *.xml
    Questions are:
    ==============
    1. why <security-role-assignment> is so strictly required ? :(
    2. is it possible to use declarative security with own RoleMapper ?
    3. if `yes` then how to get rid of the exception ?
    I have one workaround:
    to add to weblogic-ejb-jar.xml fake mapping for
    each EJB role used in ejb-jar.xml:
    <security-role-assignment>
    <role-name>MY_ROLE</role-name>
    <principal-name>FaKe_Blah_bLAH</principal-name>
    </security-role-assignment>
    In this case all works fine,
    but workaround smells very very bad :(
    Thanks in advance.
    Best regards,
    Eugene Voytitsky

    Hello,
    could you provide addition information on the server version and the facets installed in the dynamic web and EAR project ?
    thanks
    Raj

  • Unable to assign all security roles to a user with a new custom security role

    Dear All,
    Happy New Year.!
    I have a query regarding the assignment of Security Roles to new users in CRM. Normally we assign the security roles to new users via an Admin user who has 'System Administrator' security role assigned to him/her. This works perfectly fine, and we can assign
    any desired security role to the new user.
    However, in our case, we need to delegate the user creation rights to some of the client partners. We do not want to give them access to all the Administration functions; hence we created a new Security Role, lets say 'Support User Role'. We have provided
    'Create', 'Append', 'Append To', and 'Assign' rights on 'User' entity for this new security role. With this security role, we are able to create new users now, but we are only able to assign 'Agent' security role, not any other security roles.
    For example, if user 'x' has Security Role defined as 'Support User Role'. If 'x' tries to add a new user 'y', then 'x' is only able to assign 'Agent' security role to 'y', but not any other security role. As per business requirement, 'x' should be able
    to assign some other security roles, including 'Support User Role', to new user 'y'.
    I believe that there is something missing in Security Role configuration, which is causing the above problem. We compared both 'Support User Role' and 'System Administrator' security roles, but not able to figure out which minimum rights we can provide to
    'Support User Role' so that users with this security role can only add new users (with any security role), and that they are not having access on any other Administration features as well.
    Appreciate any help that you can provide on the above issue.
    Thanks in anticipation.

    Hi,
    Can you check if you have organization level Read access for Securitity Role and Organization level Assign access for Security role.
    Refer:-
    http://www.magnetismsolutions.com/blog/paulnieuwelaar/2013/04/22/permissions-required-to-manage-roles-in-dynamics-crm-2011
    Hope this helps!!!
    Thanks,
    Prasad
    Make sure to "Vote as Helpful" and "Mark As Answer",if you get answer of your question

  • How can I know the security role of the logged in user

    When you design an enterprise bean or Web component, you should always think about the kinds of users who will access the component. For example, an Account enterprise bean might be accessed by customers, bank tellers, and branch managers. Each of these user categories is called a security role, an abstract logical grouping of users that is defined by the person who assembles the application. When an application is deployed, the deployer will map the roles to security identities in the operational environment.
    But wondering when I log into my application with some user name and password (specified in my Oracle database),wondering how this works with the security role I created .How does J2EE know the security role of the logged in user.
    Thanks
    Manohar

    shet wrote:
    role at run time.
    When I login say as "manju" and password as "money" then how does it know that this user belongs to this security role.Is that the j2ee administrator has to say that user manju has this this security role.Programmitically how does it really work.I am confusedThe j2ee implementation assigns the roles using the JAAS module you have configured for your application on your application server. different JAAS modules get roles in different ways. many allow a single static role to be assigned using a config file. if using a database, often there will be configuration to specify additional database fields which specify the role for a given username.
    At runtime, a developer can test roles using methods like EJBContext.isCallerInRole().

  • How to assign the role for created user  thru dynpro App

    Hi All
    How to assign the role for currently created user from Webdynpro App.
    when i enter into the portal after creating the user
    i am getting the following messgae in the portal
    "No portal roles are assigned for this user.If this problem persists, contact your system administrator."
    how to assign the user defined role for the created user from dynpro App
    Regards
    Dhina  Kar J
    Edited by: Dhinakaran Jeyachandran on Feb 1, 2008 12:19 PM
    Edited by: Dhinakaran Jeyachandran on Feb 1, 2008 12:35 PM

    In the User Administration section of your portal find your newly created user and below select "Assigned Roles" tab then press <Modify> button and look through available roles on portal then just simply add and save. But if you want to do it programmatically see below:
    IUserAcountFactory userFactory = UMFactory.getUserAccountFactory();
    // IUser - read only but with IUserAccount is possible to set up user data
    IUserAccountSearchFilter userFilter = userFactory.getUserAccountSearchFilter();
    userFilter.setLogonUid("superuser", ISearchAttribute.LIKE_OPERATOR, false);
    ISearchResult sr = userFactory.search(userFilter);
    for (final Iterator i = new PrincipalIterator(sr); i.hasNext();) {
      IUserAccount user = (IUserAccount) i.next();
    Execute the same search for IRole (or IGroup if needed) get the unique id of them and use newRole(...) and addUserToRole(...) methods from IRoleFactory.
    Of course you don't need search for this principals if you know uniqueness of them. Use appropriate factories to get'em all by this unique id.
    All the features see in  [javadocs|http://help.sap.com/javadocs/NW04S/current/se/index.html]

  • Work flow issue: Assign agent based on role

    Hi,
    We are facing an issue in SAP workflow.
    How to assign agent based on the role of an employee.
    Thanks for your input.
    Thanks
    Muthukumar

    Hi,
    Make sure that you have configured properly in transaction OMGS.
    If it is done, then we can not do much about it.
    I faced the similar issue and i had to convince the user that it is a porblem.
    PO release workflow has some problems.
    Hope it helps.
    Regards,
    Shashank

  • Modify security role assignment at runtime

    hello,
    assume following example:
    In order to use declarative security on a EJB called TestBean, I secured
    TestBean by using the <method-permission> tag in ejb-jar_TestBean.xml,
    and grant permission to a role called adminRole
    At deploy-time, a principal called adminGroup is assigned to adminRole,
    using the <security-role-assigment> tag in weblogic-ejb-jar_TestBean.xml.
    The methods of TestBean are invoked by a JSP (TestJSP).
    This works fine.
    Now I want to add a new principal to adminRole at runtime.
    Is this possible as a matter of principle?
    Can this be managed by TestJSP?
    thanx for your help,
    Michael

    Hello,
    could you provide addition information on the server version and the facets installed in the dynamic web and EAR project ?
    thanks
    Raj

  • Customize the privileges based on role i mean just assign the privileges to security gurop?

    how to create and configure privileges like how to assign privileges to help desk, server administrator, desktop administrator if any way to customize the privileges based on role i mean just assign the privileges to security gurop?

    Yes, you can read the Wiki you started here: http://social.technet.microsoft.com/wiki/contents/articles/20292.delegation-of-administration-in-active-directory.aspx
    Mainly, you can create security groups, delegate them rights on your platforms and then just add/remove users to these groups.
    This posting is provided AS IS with no warranties or guarantees , and confers no rights.
    Ahmed MALEK
    My Website Link
    My Linkedin Profile
    My MVP Profile

Maybe you are looking for