How to grant user permission to create "Credential" and "Proxies"

Similar Messages

• How To Restrict Users To Only Create Purchase Requisitions with Item Catalog?

  Hi, everyone 
  Please help me, 
  How To Restrict Users To Only Create Purchase Requisitions with Item Catalog? is it possible? 
  Regards,   Manuel

  Hi Steenie Norman
  First click on the text item ---> Tools ---> Property Pallete ---->
  and change the Keyboard State to Local Only also this Depend in your OS
  hope this useful ....
  Regards
  Mohammed

• How to force users to enter their ID and password ?

  I am considering installing AirPort Extreme at our office. We don't want guests connecting to our network. is there any option/software that will force the guest to enter an ID and password to connect to our network ? This is similar to what happens at the hotels when we try to connect to hotel's network.

  How to force users to enter their ID and password?
  is there any option/software that will force the guest to enter an ID and password to connect to our network ? This is similar to what happens at the hotels when we try to connect to hotel's network.
  The AirPort Extreme does not have the features necessary to create a "splash page" that provides basic information about the company and asks users for their identity and password....like you see at most hotels.
  Basically, with an AirPort Extreme, users would have to scan to look for the name of the wireless network to join, and then enter the password to connect.
  The best that you might be able to achieve with the AirPort Extreme is create a "hidden" network, which would require that users know both the name of the wireless network and password to connect.  However, based on experience, this might be more of a hassle than anything else.
  The bottom line.....Apple really designed the AirPort routers for home use, so that might be the best place for them in most cases.

• SSRS How to grant BROWSE permission for reports for all the application users?

  Hello,
  Problem Statement
  I need to allow all of my application users to browse the SSRS reports via logging onto the Report Manager and to some other I even want them to use Report Builder to modify & upload the report.
  How could I achieve this.
  Environment & Current implementation
  We use SQL Server 2012 reporting services.
  Custom authentication has been implemented using IAuthenticationExtension Interface. For more details, please refer
  this msdn link.
  Currently, for each new user created in the application, the admin has to manually give BROWSER role to the username to enable that newly created user to browse the reports.
  Is there any way in which we can give "everyone" the BROWSE permission and get rid of this manual permission granting process?
  Please feel free to ask for any additional information you need to help me on this issue.
  Thanks!
  -Vinay Pugalia
  If a post answers your question, please click "Mark As Answer" on that post or
  "Vote as Helpful".
  Web : Inkey Solutions
  Blog : My Blog
  Email : Vinay Pugalia

  Hi vinaypugalia,
  According to your description, you want to grant permissions for users to access report server in a batch, right?
  In your scenario, you can use
  script files( AddItemSecurity.rss and ConfigureSystemProperties.rss )with the Reporting Services SOAP API to assign permissions. It’s better that you add those users to a user group then run those script.
  Similar thread for your reference:
  SQL script to grant user permissions for SQL Server Reporting Services
  Programmatically adding users to SSRS?
  If you have any question, please feel free to ask.
  Best regards,
  Qiuyun Yu
  Qiuyun Yu
  TechNet Community Support

• How to menage user permission

  Hi all!
  I'm developing a WEB application for menaging the information on the inside of an industry.
  I use struts and JSF.
  The problem is that I've different type of user that can connect to the server. (sell manager, engeneer, custumer, segretary...)
  Every kind of user must have a diffrent level of access.
  Example:the secretary can't access in the "engeneer" zone.
  Another problem is:
  for the same page,the user must see a different level of details.
  Example:in the production page,the engeneer must see all the data,the chemical analist must see only the chemical analisis,and so on...
  how can I structure the DB for managing that?
  And how can I implement it?
  What do you think about creating a level between the DAO to data and the application.
  Every data have a specific permission to be see.
  When a request for see the data comes,I match the required permission with the user permission.
  If the user can't access to data, I throw an exception,that is catch above.
  Anybody knows of any kind of articles on this argument?
  Any advice?
  sorry for my english.

  Can I revoke this permissions once I grant?
  You can use DROP and REVOKE commands to do the opposite.
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentOperatorRole] DROP MEMBER [TestLogin1]
  GO
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentReaderRole] DROP MEMBER [TestLogin1]
  GO
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentUserRole] DROP MEMBER [TestLogin1]
  GO
  use [master]
  GO
  REVOKE ALTER ANY CREDENTIAL TO [TestLogin1] AS [sa]
  GO
  Cheers,
  Vaibhav Chaudhari
  [MCTS],
  [MCP]

• How to handle user preference which has "_" and " " in the name

  Hi Experts,
  I have a question how to handle value which has like "_" and "space" etc in user preference.
  If setting "a_b-c d", I could not retrieve this because it's escaped in database.
  So this code can't get value even though I can set it.
  Is there any restriction of name? Is there any documentation how to code user prefernece which has non alphabet and number in the name?
  I know it's possible to handle the data like adding escaped data. But I don't think this is the best way to retrieve the data. Because nobody confirm it's not problem in the future.
  Could you tell me the best way to get these user preference?
  Thanks in advance,
  Masaaki Tada
  Here is a sample.
  <%@ page contentType="text/html;charset=Shift_JIS" %><%@ page language="java" import="com.plumtree.remote.portlet.*, com.plumtree.remote.prc.*, java.util.*" %>
  <%
  /** * UserInfo - Simple Page * Display User Information*/
  // VariablesIPortletContext oPortletContext = null;IPortletRequest oPortletRequest = null;IPortletUser oPortletUser = null;IPortletResponse oPortletResponse = null;IRemoteSession s;IUserManager oUser;
  /* Get Portlet Objects */
  try{oPortletContext = PortletContextFactory.createPortletContext(request, response);oPortletRequest = oPortletContext.getRequest();oPortletUser = oPortletContext.getUser();oPortletResponse = oPortletContext.getResponse();} catch (Exception e) {oPortletContext = null;oPortletRequest = null;oPortletUser = null;oPortletResponse = null;}
  String val = oPortletRequest.getSettingValue( SettingType.User, "a_b-c d" );String hoe = oPortletRequest.getSettingValue( SettingType.User, "abcd" );out.println( "a_b-c d: " + val );out.println( "abcd : " + hoe );
  oPortletResponse.setSettingValue( SettingType.User, "a_b-c d", "aiueo" );oPortletResponse.setSettingValue( SettingType.User, "abcd", "bbbb" );%>

  Plumtree recommends that user preference names have only alphanumeric characters in them (a-z, A-Z, 0-9). Any non-alphanumeric characters will be encoded by the EDK.
  I strongly suggest that you change your user pref name to something that's alphanumeric. However, if that is not possible, you can use the following workaround: in the web service editor, enter the encoded name for the user pref. There are several ways to get the encoded name.
  One way is to encode the pref manually, yourself. Plumtree uses the %u encoded format: each non alphanumeric character is converted into %uxxxx, where xxxx is the Unicode representation of the character. For all ASCII characters, just look at the ASCII hex chart. For example, character "-" has a hex value of 2d. So, a preference name "jane_pref" would be encoded to "jane%u002dpref", and you'd enter the latter value on the preferences page in the web service editor.
  The other way to find out the encoded value is to set a preference programmatically and use the HTTP tunnel tool to look at HTTP traffic between the portal server and remote server. The remote server will be sending a HTTP header to the portal server (the header name will probably be CSP-User-Pref) and inside the header you should see the pref name, encoded with %u. Just copy it out of there and into the web service editor.
  Hope this helps,
  Jane

• How do I reinstall iChat, how do PC users video iChat with me, and should I just use skype?

  1. I deleted iChat awhile ago by mistake. I searched ichat in Macintosh HD, and the only result was iChat the application file, but its icon is a faded out IWeb icon. When I click on it, it just bounces on my dock, until it disappears and an error message pops up stating it quit unexpectedly. I tried dragging the result to my desktop then redragging it into my Applications folder, but the same thing still happens (faded out iWeb icon instead of iChat icon, bounces, quits, error message). I also tried installing the iChat AV (forgot which version) and iChat Update 1.0 Universal, both of which said I had to have 10.4. I have 10.5.8. Also, if this makes any difference, the current faded out iChat in my Applications folder says its version 4.0.9. I do not have my reinstall CD, and do not want to call support and have them send me one. Considering I bought my macbook in late 2008, and my warranty is up, I'm pretty sure they wouldn't help me anyways. I also do not know of anyone who has a mac so the sharing option can be crossed offed. Is there a downloadable version of iChat for 10.5. users?
  2. If I somehow managed to reinstall a working iChat, how would PC users connect to me and vide chat?
  3. Should I just use skype? Would i have to download anything? Is skype video chat free? What are the differences between iChat and skype, and which one is better?
  Thank you for your time!

  Hi,
  Reinstall Instructions
  Be SURE to Download (Manually) and Install the COMBO version of the last Update to the OS you did as iChat will need to be Updated (Software Update will think it is already done and you need to Fool it)
  Re 2).
  In theory it is just a question oif you using a valid AIM name in iChat
  This could be one registered with AIM or one from @mac.com or MobileMe if paid for or a current trial.
  In Practice it can need a bit of tweaking at both ends
  They Need to allow the AIM App through the Windows firewall as an Exception (AS with any Non Microsoft app)
  They may also need to turn off the "Real Time" option that does not work to iChat and effects A/V chats as well.  (It is Sending as you type). It will be in one of the Menus of their Budy List.
  Post back for more if you get stuck.
  Re 3)
  Skype does offer free Video Chat and some people resort to it when iChat to AIM does not work.
  It is free (At present - and you only pay for the Connection to and from real phones)
  Skype was bought by Microsoft within the last week and things may change at some point in the future.
  iChat has better Video
  Audio depends on the capabilities of your Mac and their PC but is probably about equal.
  Connection methods differ and iChat's Video and Audio Chats are technically more secure (you can in fact log out of the Buddy List as they adre Peer-to-Peer where as Skype uses a little bit of everyone's bandwidth (Between 40 and 100 other End Users)
  Other options are here
  Video options are from 8 onwards
  Mebeam is now called Koowy. (Video Chatting in a Web Browser using Flash)
  NOTES;
  Google Do a Plug-in for Intels to allow you to use their Web Mail Page Chat Option
  It can Conflict with Flash if you use more than one option.
  10:24 PM      Tuesday; May 17, 2011
  Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro 2Gb( 10.6.7)
   Mac OS X (10.6.7),
  "Limit the Logs to the Bits above Binary Images."  No, Seriously

• How to grant select permission to all the tables in the user

  Hi All,
  I have 5 tables in one user, now i want to give only select privilege to another user on those tables. Please help me to solve this issue.
  Thanks in Advance.
  Thanks and Regards,
  chiranth

  See following discussion: Re: Select Grant on another schema

• How to stop users not in any group and users from other groups accessing sites they have no permission to access on top link bar?

  Hello Community
      Using SharePoint 2010 Server and UI, a web application
  was created with subsites.
      The subsites have unique permissions and Owner, Member
  and Visitor groups.
      The problem is however even if a user does not exist
  in a group that user can access the top link bar/navigation
  bar and its sub sites.
      Also any user in any group can access any top link bar/navigation bar and its subsites.
      How do you enforce that if a user is not in a group
  they are denied access the top link bar/navigation bar and its
  subsites?
      Thank you
      Shabeaut

  If you are using the built in SharePoint navigation links, SharePoint will automatically hide links to sites that a given user doesn't have access to.
  The problem is, it sounds to me like you have a fixed top link bar that lists the content and if a user doesn't have access, the link still shows up.
  You may want to look at how the top link bar was encapsulated in the design of the page.  If it isn't wrapped in the permissions provider code, that could be the problem.
  I trust that answers your question...
  Thanks
  C
  |
  RSS |
  http://crayveon.com/blog |
  SharePoint Scripts | Twitter |
  Google+ | LinkedIn |
  Facebook | Quix Utilities for SharePoint

• How are different user names being created on my Apple ID accounts??

  I can no longer access the Guest Account on my IMac running Snow Leopard. Guest account says I have the wrong pwd? Funny thing is I never gave it a pw! Once before I found the Guest Account configured in a lower layer IFrame with several missing programs from my personal account being used by it. No one else has physical access to my Imac, although I often see activity and references to Remote Desktop in my logs and source files.
  Recently had to have a FirmWare PW removed from my IMac and I've never set the fw pw in the first place. After the firmware reset when I got home and turned it on first time, tells me it doesn't recognize my administrator /user pws? Can these strange but true issues be related? Am I hacked? If so how do I begin to untangle it all? I did go ahead and set the FW password this time as I don't want anyone else to set it for me and have to go through that ordeal again. Is this something I should do, or not? How else can I protect my IMac, from these rogue changes and settings/menu/program alterations that keep happening. these things seem to happen in spite of several virus, anti spam, security programs I've installed; or any other security steps I've always tried to follow to prevent being hacked.
  Started to reinstall Snow Leopard from original disc this evening and Utility tab shows two other volumes installed, that's three total; one being Boot Camp, the other Untitled. I never installed any of these except SL from the original disc. It appears I neither have full access to these other 2 partitions as the i button only shows partial information. Also the verify permissions, users, etc buttons do not allow me to repair, or do anything with these other volumes. Now I'm afraid to try and use the os disc without someone's more knowledgeable guidance, and/or wisdom. I've already made 2 trips to local Apple Store, plus the 3 hour round trip to authorized tech center to get the FW pw reset, so I'm hoping someone on the forum might be able to help me out this time .. argh!

  HI Suzie,
  Not to alarm you, but it does seem somebody got nto your Mac Remotely.
  Disconnect from the Internet & try reinstaliling the OS... can you afford to erase & install?
  Do you have backups?
  ClamXAV, free Virus scanner...
  http://www.clamxav.com/
  Free Sophos...
  http://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-mac-home-ed ition/features.aspx
  http://www.sophos.com/products/enterprise/endpoint/security-and-control/mac/
  Little Snitch, stops/alerts outgoing stuff...
  http://www.obdev.at/products/littlesnitch/index.html

• How can I get permission to create a symbolic link?

  I am trying to create a symbolic link from a program, but I keep getting:
  A required privilege is not held by the client.
  I am running the program from my account which is in the Administrators group, and otherwise has admin rights. However, if I login to the Administrator account the program runs fine, so I know the program code is correct.
  I have checked the local security settings, and even added my account explicitly to the local security settings to create symbolic links, but that does not help. I have also turned of UAC, but that does not help.
  What do I need to do on Windows 8.1 to be able to create a symbolic link from an account other than Administrator?
  Cheers, Eric
  Eric Kolotyluk - software developer, music DJ, swing dancer

  Basically I have a Scala program that is doing:
    try {
      Files.createSymbolicLink(link21, folder1)
    catch {
      case fileSystemException: FileSystemException =>
        System.err.println("\n\t**** Error configuring test fixture ***\n\n")
        println(fileSystemException)
        if (fileSystemException.getMessage().contains("A required privilege is not held by the client"))
          println("You need to set permissions by...\n")
  Where Files is the java.nio API. In fact it's a unit test fixture that tests to make sure my code handles symbolic links properly. The test fixture creates a temporary directory, for example
  C:\Users\Eric\AppData\Local\Temp\testFolder-432432684744817467
  and more files and folders below that. In one folder, it tries to make a symbolic link to another folder.
  I tried what you said with Run As Administrator, in this case, I ran my Eclipse IDE as Administrator and the code works -- thanks for the tip :-)
  However, in practice, I need this to work as part of automated unit test running as part of a Maven build, so is there some way to set things up that do not require "Run As Administrator"?
  Now that I have one solution, I can probably figure out some hack, but I was hoping there would be some more simple straightforward way to do what I want.
  Eric Kolotyluk - software developer, music DJ, swing dancer

• How to grant write permission to external HDD

  bought a new portable 1TB USB 3.0 Buffalo HDD, unable to transfer data, HDD is NTFS formatted but I am usin PARAGON NTFS for MAC. My other portable HDD of seagate is working fine. New Buffalo drive does not acknowledge WRITE permission its showing only READ.

  Right-Click on the OU and select Properties
  Select the "Security" tab
  Select the "Advanced" tab
   Select the "Add" button
   Enter the security principal name
   security principal
    Ok
   Properties tab
   Apply to:
   Descendant User objects
   Permissions:
   Read servicePrincipalName - Allow
   Write servicePrincipalName - Allow
    Ok
   Ok
  Ok
  Paul Bergson
  MVP - Directory Services
  MCITP: Enterprise Administrator
  MCTS, MCT, MCSE, MCSA, Security, BS CSci
  2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
  Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
  Please no e-mails, any questions should be posted in the NewsGroup.
  This posting is provided AS IS with no warranties, and confers no rights.

• How to grant shutdown permission

  Hello,
  I have created two others account apart from the root account on my solaris 10 machine. Later i' ve realized that the simple accounts don't have right to shutdown the machine unless you switch to the root account.
  So which permission should i give to the non-root account to be able to shutdown the system.
  Thanks in advance

  Built In - Role Based Access control http://docs.sun.com
  Open Source - Sudo
  Commercial - Symark.com
  If it's a laptop use the power button but not from JDS!
  alan

• How to set up permission for portal objects and folder

  Hi All,
  We are implementing EP 7.0. For creating portal objects, I have assigned "Super_admin, Content_admin, System_admin and User_admin" role to my userid and created iviews, roles and folder.
  During SAP audit they asked us to open a Iview to show the permission,   the below are the value shown in permission editor.
  Role Name           ====== Administrator ===== End  User ======Role Assigner
  Everyone             ======  Read            ======Yes        ====== No
  Super_admin_role ====== Owner            =====Yes         ======Yes
  SAP asked us to change the permission and said "Super_admin_role" should not be used, they asked us to create a group or role and assign. We are not clear what SAP wanted us to do.
  Can any one let me know how this permission needs to be given and whether "Super Admin" role can be assigned to a userid.
  Thanks in advance.
  Rgards,
  H.K.Hayath Basha.

  Hi Michael,
  I didn't create any role. I will let yo know what I have done so far.
  1. Created a group called "ADMIN_GROUP".
  2. Assigned "SUPER_ADMIN" role to group "ADMIN_GROUP.
  3. Assigned userid "ADMIN_USER" to group "ADMIN_GROUP".
  4. Opened the persmission of "PORTAL_CONTENT" folder and added group "ADMIN_GROUP" and set this group as "OWNER",  "END_USER" check box is ticked and "ROLE_ASSIGNER" check box is checked.
  5. Removed the role "SUPER_ADMIN" from  group "ADMIN_GROUP".
  6. Logged into portal using "ADMIN_USER" created a folder called "TESTING". Then opened the
      permission editor for the folder "TESTING", it showed three record
      "ADMIN_GROUP"           === OWNER  === 'X' === 'X'
      "EVERY_ONE"               === READ     === 'X' === ' '
      "SUPER_ADMIN_ROLE. === OWNER  === 'X' === 'X'
  7. I am not able to delete "SUPER_ADMIN_ROLE" from the permission editor, as it is greyed.
  With the above steps what I have achieved is I have given permission to group "ADMIN_GROUP". Is this what we need to do. Did I did anything wrong.
  Regards,
  H.K.Hayath Basha.

• How to write error log while creating invoice and avoid implicite commit

  Hi,
  I've have written code in exit RV60AFZZ in which I check for some possible errors while invoicing via VF01/VF04. If conditions are met then we create error message and display it to the user. As result we had a lot of missing SD invoices in FI when we did batch/mass invoicing. I've opened OSS note and SAP support team wrote that using statement MESSAGE is forbidden in UE. It can lead to implicite commits.
  Do you have some example how to write error log for invoincing in VF01/VF04 transactions?
  Thanks

  @ sri nath. Please read post before answering. I wouldn't be posting trivial questions. As I wrote before it doesn't work.  Also SAP support would not answer to the question in my OSS.
  In VOFM, SAP is using routine  VBFS_HINZUFUEGEN_ALLG to write to error log.
  Mine is something like this in ue:
        PERFORM ZVBFS_HINZUFUEGEN_ALLG
                   USING VBAP-VBELN VBAP-POSNR  'ZSD' 'E '600'
                         SPACE SPACE SPACE SPACE.
  (we have custom message class)
  As result  XVBFS and VBSK are filled with error, but posting is also done.  Error log is filled but invoice is created and posted in FI.
  That is not OK.
  thanks