How to grant admin access to a CDOT cluster via an Active Directory group

Similar Messages

• How to grant anonymous access on sharepoint document library/list only not for web application

  Hello
  How to grant anonymous access on sharepoint document library/list only not for web application.I have claim based sharepoint site and has to be but i want to grant access on document library/list only.Is this possible?
  Thanks
  Rajesh Kumar "Changing the Face" can change nothing.But "Facing the Change" can change everything.

  As i am using following code
  SPSite site = SPContext.Current.Site;
              SPWeb web = SPContext.Current.Web;
              SPSecurity.RunWithElevatedPrivileges(delegate()
                  using (SPSite ospSite = new SPSite(site.ID))
                      using (SPWeb webs = ospSite.OpenWeb(web.ID))
                          // Enable anonymous access on web application
                          webs.AllowUnsafeUpdates = true;
                          SPUrlZone urlZone = SPUrlZone.Default;
                          SPWebApplication specifiedWebApplication = ospSite.WebApplication;
                          SPIisSettings iisSettings = specifiedWebApplication.IisSettings[urlZone];
                          //iisSettings.AuthenticationMode = AuthenticationMode.Windows;
                          iisSettings.AllowAnonymous = true;                       
                          specifiedWebApplication.Update();
                          // Get document library collection here and fetch all the document urls
                          SPDocumentLibrary docLib = (SPDocumentLibrary)web.Lists["Documents"];
                          if (docLib != null)
                              docLib.BreakRoleInheritance(true, false);
                              docLib.AllowEveryoneViewItems = true;
                              docLib.AnonymousPermMask64 = SPBasePermissions.ViewPages | SPBasePermissions.OpenItems | SPBasePermissions.ViewVersions
                                  | SPBasePermissions.Open | SPBasePermissions.UseClientIntegration | SPBasePermissions.ViewFormPages | SPBasePermissions.ViewListItems;
                              //docLib.AnonymousPermMask64 = SPBasePermissions.EmptyMask;
                              docLib.Update();
  Should working but getting access denied......i am totally stuck at this point.
  Rajesh Kumar "Changing the Face" can change nothing.But "Facing the Change" can change everything.

• How to find the SQL Server Instances running across the given activer directory domain?

  How to find the SQL Server Instances running across the given activer directory domain?
  I have though of OSQL -L , Microsoft Assessment and Planning ( MAP ) tool and SQLPing3 (SQLSecurity) might help me.
  I would appreciate if there any other way of finding the SQL Servers / Instances running across the given active directory domain.
  Sivaprasad S
  http://sivasql.blogspot.com
  Please click the Mark as Answer button if a post solves your problem!

  Dear ,
  Very simple u find all instances through the customized sp which is get all details about inventory. Like i put the sp bellow. This is without any tool. 
  USE [master]
  GO
  /****** Object:  StoredProcedure [dbo].[DBStatus]    Script Date: 08-01-2015 19:46:11 By Damodar Patle Sr. DBA Mumbai India ******/
  SET ANSI_NULLS ON
  GO
  SET QUOTED_IDENTIFIER ON
  GO
  ALTER PROCEDURE [dbo].[DBStatus] 
  AS
  SELECT 
  SERVERPROPERTY('servername') AS ServerName,
  ConnectionProperty('local_net_address') AS 'local_net_address',
  ConnectionProperty('local_tcp_port') AS 'local_tcp_port',
  CONVERT(VARCHAR(25), @@VERSION) as  VERSIONSQL,
  SERVERPROPERTY('ErrorLogFileName') AS ErrorLogFilePath,
  database_id,
  CONVERT(VARCHAR(25), DB.name) AS DBName,
  CONVERT(VARCHAR(10), DATABASEPROPERTYEX(name, 'status')) AS [Status],
  CONVERT(VARCHAR(10), DATABASEPROPERTYEX(name, 'Recovery')) AS [Recovery_Model],
  create_date as DBCreate_Date, --physical_device_name,
   (SELECT COUNT(1) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS DataFiles,
   (SELECT SUM((size*8)/1024) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS [Data MB],
   (SELECT COUNT(1) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS LogFiles,
   (SELECT SUM((size*8)/1024) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS [Log MB],
   (SELECT physical_name FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS MDF_File_Location,
   (SELECT physical_name FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS  LDF_File_Location,
     user_access_desc
     FROM sys.databases DB
     ORDER BY dbName, [Log MB] DESC, NAME

• How to grant the access t-code : BP by company code or by country

  Dear Sir,
  Please kindly advise how  to add the authorized  to grant to access the data in T-code : BP by company code or account group??
  Thank you and best regards,
  Vimol

  Hi Vimol,
              Please check the transaction code: SU22.
  Give transaction code as "BP".
  and execute.
  It will list all the authorizations objects of transaction code: "BP"..
  Depending on ur requirement, u can choose the object.
  I hope it helps u.
  Regards,
  Sri.

• How to grant "Write ServicePrincipalName" and "Write validated SPN" rights to the directory for service account

  Hi ,
  How can I grant "Write ServicePrincipalName” and “Write validated SPN” rights to the directory for service account or computers?
  Shailendra
  Shailendra Dev

  Right-Click on the OU and select Properties
  Select the "Security" tab
  Select the "Advanced" tab
   Select the "Add" button
   Enter the security principal name
   security principal
    Ok
   Properties tab
   Apply to:
   Descendant User objects
   Permissions:
   Read servicePrincipalName - Allow
   Write servicePrincipalName - Allow
    Ok
   Ok
  Ok
  Paul Bergson
  MVP - Directory Services
  MCITP: Enterprise Administrator
  MCTS, MCT, MCSE, MCSA, Security, BS CSci
  2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
  Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
  Please no e-mails, any questions should be posted in the NewsGroup.
  This posting is provided AS IS with no warranties, and confers no rights.

• How do i use an active directory group for vpn and not all user

  hi all,
  i have an asa 5515x...
  how do i use a particular group in active directory to have vpn/anyconnect access?  right now i believe it's for all user on my current config,
  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  !integrate with active directory
  aaa-server LDAPSERVERS protocol ldap
  aaa-server LDAPSERVERS (vlan192) host 10.0.0.2
  ldap-base-dn dc=company,dc=com
  ldap-scope subtree
  ldap-naming-attribute sAMAccountName
  ldap-login-password 12345678
  ldap-login-dn cn=administrator,cn=Users,dc=company,dc=com
  server-type auto-detect
  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  say i want this "vpn-group" object group in AD and my vpn is only anyconnect and no other vpn types.
  thanks for any comment you may add.

  The best way is to use Dynamic Access Policies (DAP). Cisco has a white paper (here) that shows how one can choose the LDAP group as one of the DAP criteria.
  DAP requires the Advanced Endpoint Assessment feature, so your licensing must support that.

• How to populate drop down list in infopath 2010 with form Active Directory resources.

  I want to populate drop down list in infopath 2010 with Active directory resources.
  Kindly let me know how to do this.

  Actually I posted an alternative approach, whoops. This is the Web service way, but both will work;
  http://blog.mangroveweb.com/pre-populating-an-infopath-from-with-mysql-data-using-a-net-web-service/using-sharepoints-getuserprofilebyname-web-service-to-retrieve-ad-account-information/
  w: http://www.the-north.com/sharepoint | t: @JMcAllisterCH | YouTube: http://www.youtube.com/user/JamieMcAllisterMVP

• How to set permissions on a file for a Mac without active Directory

  We don't have our Macs in the Active Directory, we are looking to share an external hard drive to only Macs and not the Windows PC's on the network with out using active directory. I have tested sharing the external hard drive from a PC to everyone and both the PC's and Macs can access this, but we only want the Macs to see this and access this and not everyone. There is no selection for sharing with the computer name in the Share permissions so the only way to do this is to share it to everyone. The Mac accounts are local to the Macs and the PC's are on Active Directory so what i need to do is have a way to share this folder with only Macs and not all the windows PC's. Any solutions, any ideas will help
  Thanks

  hi
  good
  go through these links
  http://help.sap.com/saphelp_nw2004s/helpdata/en/b9/b4de3f68d48f15e10000000a155106/content.htm
  http://help.sap.com/saphelp_nw04s/helpdata/en/be/0de03f41b9eb06e10000000a1550b0/content.htm
  thanks
  mrutyun

• How can add and push updates to1000 clintes in WSUS non active directory

  Hi Can any one please help me on my requirement .
  We have 1000+Clients and we are going to use WSUS standalone server for push the updates to cleints in Non-Active Directory.p
  Please let me know do we have any way push the updates from WSUS server without GPO updates... ?

  Hi Can any one please help me on my requirement .
  We have 1000+Clients and we are going to use WSUS standalone server for push the updates to cleints in Non-Active Directory.p
  Please let me know do we have any way push the updates from WSUS server without GPO updates... ?
  This is almost an exercise in futility; at best it will be extremely painful.
  Aside from trying to wrap my head around why a 1000+ system environment would not have Active Directory deployed (in 2014!) in the first place, there's only one way you'll be able to achieve this objective: One Client At A Time!
  In short, you'll need to either use Local Policy on each individual system, or perform a REG IMPORT of the necessary settings. There may be ways to expedite the REG IMPORT, but that highly depends on the trust factor of the individual end-users, and whether
  they have local admin privileges on their system.
  Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
  SolarWinds Head Geek
  Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
  My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
  http://www.solarwinds.com/gotmicrosoft
  The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

• How to provide Admin access to users that are in external table

  Hello All,
  I have configured external table authentication in OBIEE 11.1.1.5.0, i am able to login, i have some couple of users, i want to provide for some users as ADMIN Privileges
  . Also how to identify these users in application roles, when i am trying to add in the application roles, i am not able to find these users.
  Thanks,
  Sreekanth

  Try
  DBA_STMT_AUDIT_OPTS
  DBA_PRIV_AUDIT_OPTS
  DBA_OBJ_AUDIT_OPTS
  SYS@etest> audit role;
  Audit succeeded.
  SYS@etest> SELECT * FROM DBA_STMT_AUDIT_OPTS;
  USER_NAME                      PROXY_NAME
  AUDIT_OPTION                             SUCCESS    FAILURE
  ROLE                                     BY ACCESS  BY ACCESS

• How to grant wire access to a wireless ssid

  I have a wireless lan controller (5508) broadcasting 2 SSID's, once is a secure vlan grabbing an ip address from a local dhcp server and getting access to the internal network, and the other ssid is for a guest vlan where the dhcp server is in a remote site and internet access is off a circuit in our data center which is accessed over a wan. The secure ssid's vlan is defined on the local switch, but the guest vlan is not defined on the local switch.
  the ap's in the respective sites are trunked to the core switch and the switchport config is :
  switchport trunk encapsulation dot1q
  switchport trunk native vlan 5
  switchport trunk allowed vlan 5
  switchport mode trunk
  srr-queue bandwidth share 10 10 60 20
  srr-queue bandwidth shape 10 0 0 0
  queue-set 2
  priority-queue out
  mls qos trust cos
  auto qos voip trust
  spanning-tree portfast
  it's trunked b/c we have both vlans going across this physical connection.
  I would like get the guest vlan a wired connection, ie. off a switch\hub, but not sure how to do that as this guest vlan is not defined on our local network.

  You may be trunking, but you're only allowing vlan 5 across the trunk.
  On your controller, how are you interfaces configured?
  Your SSIDs should match up with an interface, which matches a L2 vlan, which eventually matches a L3 IP address.
  Can you provide a little more detail?  I've done this setup in the past, so it's doable.

• How can outside users access my iWeb sites shared via Web Sharing

  Since the coming demise of mobileme/idisk I have decided to publish all of my websites locally (created with iWeb) and share them by the Web Sharing feature in OS X. Everything works perfectly from any computer or device that is on my home network but once I am outside my network I cannot access any of my website nor can any family members. I have an airport network at home using an airport extreme and numerous computers and devices (ipods, ipad, etc) on the network. All can access from within the network but not from outside.  What can I do to fix this?
  I don't want to use a commercial service since my sites are large.  Tried Dropbox and it was too cumbersome.
  Thanks,
  Chris
  Web Server: iMac running OS 10.7.3 with Web Sharing on using the Sites folder inside my user folder

  Here is some info on hosting your website yourself:
  _WWW FAQs: How do I host a real domain name at home?_
  _How do I host my own website at home?_
  _Should I host my own web server?_ - This one describes the pitfalls of hosting yourself.
  I agree with Roddy. For about $3.95 per month you can get a fuil service host complete with 24/7 ear-to-ear customer support and all the bells and whistles at HostExcellence.com. 
  This tutorial descrtibes how it works so well with iWeb: iW16 - Using HostExcellence.com with iWeb as does this website: Using HostExcellence - iWebFAQ.org
  Other info can be found here: Life After MobileMe
  OT

• How to disable the  'Change - Display' Button in Cluster via SM34 ?

  Hi
  I have a View Cluster maintained with a transaction wich calls  SM34 passing it the Cluster.
  I need the dialog be only in display mode, so i'm looking for a way to disable the button Change<->Display.
  Does somebody knows how can i do this ? maybe with an event, the button does not appears or well making the button does not change the display mode (does not change the field VIEW_ACTION siwtch from 'S' to 'U')
  Thanks in advanced
  Frank

  Hi Frank,
  On SAP 4.7 Version
  1). Goto SHD0
  2). Enter the transaction code as SM34
  3). ENter the transaction Variant as say ZSM34
  4). Click on the create button --> this will take you to the sm34 screen. If you want to default some value or disable something on this screen just hit enter on this screen. You will get a popup window to select and restrict.
  5). You can further go to next screen and deactivate the menu. On the popup screen you will get a button MENU FUNCTIONS.
  Hope this helps
  Cheers
  VJ

• Exch 2013 SP1 How to create new mailbox account for multiple users exist in active directory in one go?

  Hi,
  First let me explain my Exch 2013 SP1 Multidomain set up.
  1. DA as Forest Root domain, having schema master domain role installed.
  DB as Tree Root domain in above forest 
  DC as Child domain in Tree root domain.
  Brought 1 machine in Child domain and in stalled Exch 2013 SP1 on it.
  Now i have created 100 users in child domain, but i am not getting a option to enable Exchange mailbox for all 100 users in one go. (Also unable to do same on normal set up having one DC and Exch 2013 SP1 server)
  Could you please help me do it.
  Thanks & Regards,
  Sudhir

  Dear Sudhir
  Please try this through Exchange management shell and it will help you 
  Get-User -RecipientTypeDetails User -Filter { UserPrincipalName -ne $Null } | Enable-Mailbox
  Remember to mark as helpful if you find my contribution useful or as an answer if it does answer your question.That will encourage me - and others - to take time out to help you Check out my latest blog posts on http://exchangequery.com Thanks Sathish
  (MVP)

• How to set in Windows 8.1 the Account Picture from Active Directory

  Hello All,
  In my company I have uploaded the photos for
  each employees in
  Active Directory using a powershell script that set the attribute
  thumbnailphoto.
  This is useful for images in Lync and Outlook,
  now I want to use these pictures
  to sync with the account picture
  in Windows 8.1 but I haven't found anything in internet that helps me
  for this.
  I hope someone can help me,
  Thanks!

  Hi,
  You can try the steps in following article:
  Using Pictures from Active Directory
  http://msitpros.com/?p=1036
  This response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you. Microsoft does not control these sites and has not tested any software or information found on these sites; therefore,
  Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. There are inherent dangers in the use of any software found on the Internet, and Microsoft cautions you to make sure that you
  completely understand the risk before retrieving any software from the Internet.
  For your reference, here is the similar thread with different method:
  http://social.technet.microsoft.com/Forums/en-US/d6e7b2c3-c343-4900-a01d-24bfb30357b6/is-there-a-solution-to-set-user-account-picture-from-active-directory-thumbnailphoto-attribute-in?forum=w8itproinstall
  Hope these would be helpful.
  Kate Li
  TechNet Community Support