How to reconcile deleted users with GTC

Hi all,
I'm wandering wich is the best approach to perform reconciliation of deleted users using GTC connector. (It doesn't concile it by default, does it?).
I don't know if it's a bad idea to mark the deletion in the target table row (setting a value in a column) and revoke the user through an Entity Adapter. Should it be better to develop a custom Scheduled Task for this?
Any tip will be considered!
Thanks in advance,

Hi,
Yes I run both Schedule task as "time-programmed" . I usually run creation task first and then it is followed by delete recon task.
I am not fully understanding what do you mean by starting GTC generated task automatically? Please give me more insight before I comment on this.
For delete recon you need to do following
HashMap userValues[];
userValues = null;
userValues=createDeleteHashMap(results);
Set deletedAcc = reconUtil.provideDeletionDetectionData(resourceObject, userValues);
missingUser = reconUtil.getMissingAccounts(resourceObject, deletedAcc);
long reconEvent[] = reconUtil.deleteDetectedAccounts(missingUser);
Here userValues is array of Hashmap which have all the non revoked user.
So your steps should be.
1.Query the table wich store all active users and store them in an array of hashmap
2.Pass it to provideDeletionDetectionData method.
3.pass step 2 result set to getMissingAccounts method.
4.Pass step 3 result set to deleteDetectedAccounts.
Alternatively you do following.If in your query you can find out which user is deleted and if you are oim9.1 then follow these steps.
1.Query the table and get revoked/deleted user and store then in a hashmap.
2.Use createDeleteReconciliationEvent(java.lang.String psObjName, java.util.Map poAttributeList) to create the delete reconciliation event.
First approach is bit risky because if somehow in your table or view all the record are delete or revoked or by any error GTC connector did not find any record then it will revoked all the user from OIM which can lead to disaster as you are doing trusted recon.
Please let me know if you have any more questions.
Regards
Nitesh

Similar Messages

Delete user with db owner roles

Dear All,
I want delete user with db owner roles from all database and from server using sql query.
So i want using one query to delete user from all database and also from server
how i can do that?
best regards,
Surbakti

I means it's login.
I want delete because user whom use that login already resign from my company.
so if i delete that login i can use that slot for the other user.
best regards,
Surbakti
First you said you want to delete all logins with db owner roles and now you are saying I want to delete use login who has left the company. Was there mass exodus.
If login was a domain login you should also make sure it gets removed from domain, then from local windows machine and then from SQL server. If it is SQL Server login it can be removed straight. Search online you would find various methods to remove
login
Have alook at below links
Question about removing logins from database
Drop login
Also note that any job which the login owned would be affected if login is removed. So you need to be careful
Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
My Technet Wiki Article
MVP

How could I delete files with name string with "TAL" and older than 05.05.

How could I delete files with name string with "TAL" and older than 05.05.2009 on unix

Our ECC Ides system today was not responsible. For first time 17 users were working on the systtem (IWN2008/SQL2005 based). Before the people were maximally 5.
The server is done by making a homogeneous system copy from an blade machine(now it is an VIrTUAL)
There was enaught disk space. However I checked Wokload 03sdn transaction) inn system. and found out that at that time of restarting(I had to restart system 3 times to get logged on the system and even then it was almost unresponsive.
I can found in there top abap."Login_Pw", "SESSION_MANAGER", "?". (BAtch), "ADMSBUF, >DEleyed Function call, RSPOWPOO""RSWWclear", ""VA01", "SAPMHHTP "Buf Sync" >DDLOC CLEANUP)""rsbtctE"
What can I do?
¸
Who could interfer SAP_CCMS_MONI_BATCH_DPSAP_CCMS_MONI_BATCH_DP
the 2 main users under users profile were ZUGTIN running and SAPSYS( running many system jobs)
How to approach the problem

How do i delete music with grayed titles in my iphone and ipad. iTunes Match is on

how do i delete music with grayed titles in my iPhone and iPad. the grayed titles happened when i installed iTunes Match.

I've done the reset iTunes Match routine turning it on or off in my devices. Everytime its On, it goes thru d scan, match and upload process. When it gets to tge upload stage, it takes sooooo long for just one song to upload, as if d remaining song (2k+) will take years. Anyway, the grayed titles still don't go away. These titles are not exactly missing. I can play those titles because they also appear in my devices as regular content - meaning, the grayed titles are duplicates but don't go away.
By the way, these grayed titles are viewable only in iTunes Match not on my devices (iPhone 4 and ipad2)

Problem deleting users with delegated admin

Hello,
I seem to be having a problem deleting users with delegated administrator. I am using JES 2005Q4.
Here is what I do:
I set Inetuserstatus and mailuserstatus to deleted. Then run msuserpurge to delete the mail box. This seems to be working fine. Then I do a commadmin domain purge and it will actually delete the persons ldap record, but it does not delete the o=pab records or the o=PIserverDB records.
I am probably missing a step here, and would apprecidate it somebody could point me in the right direction.
Thanks,
Gary

DA patches:
119777-10 most current release for Solaris
119778 for X86
119779 for Linux
118540-23 Communication Express Solaris Sparc
118541 X86
118542 Linux
118207-42 Messaging core Solaris sparc
118208 X86
118209 Linux
116574-02 Veritas Vcsha (sparc only)
118242-03 and 118245-03 Dssetup sparc
118243 and 118246 X86
118247 Linux
122018-02 Outlook Connector
(all the currently released patches. Most have t-patches available from tech support post the above numbers)

How to migrate Apex users with existing passwords.

Hi Guys,
Our apex env finally getting a upgrade from 3.1.1 to 4.1.1 (I know, it's been overdue for years)
Some of our apps use 'Application Express' authentication, and have few hundreds users in Apex (and users belong to diff user groups).
The issue is, the 4.1.1 env is set up on a brand new server and DB, we want to migrate these users with their existing passwords from the 3.1.1 env.
I tried exporting the workspace, and the users are exported as below,
 begin
 wwv_flow_fnd_user_api.create_fnd_user (
 p_user_id => '10592934818556549584',
 p_user_name => 'TEST',
 p_first_name => 'a',
 p_last_name => 'b',
 p_description => '',
 p_email_address=> '[email protected]',
 p_web_password => 'E92903DEAD135E6E86BD6B64544D2BD9',
 p_web_password_format => 'HEX_ENCODED_DIGEST_V2',
 p_group_ids => '10592435401495787816:',
 p_developer_privs=> '',
 p_default_schema=> 'TEST',
 p_account_locked=> 'N',
 p_account_expiry=> to_date('201212040000','YYYYMMDDHH24MI'),
 p_failed_access_attempts=> 0,
 p_change_password_on_first_use=> 'Y',
 p_first_password_use_occurred=> 'N',
 p_allow_access_to_schemas => '');
 end;
when I run this in 4.1.1 I had to modify it to the new format as below,
also changed the p_group_ids to new user group but kept the password the same
 begin
 wwv_flow_fnd_user_api.create_fnd_user (
 p_user_id => '',
 p_user_name => 'TEST',
 p_first_name => 'a',
 p_last_name => 'b',
 p_description => '',
 p_email_address=> '[email protected]',
 p_web_password => 'E92903DEAD135E6E86BD6B64544D2BD9',
 p_web_password_format => 'HEX_ENCODED_DIGEST_V2',
 p_group_ids => '1399416797653068:',
 p_developer_privs=> '',
 p_default_schema=> 'TEST',
 p_account_locked=> 'N',
 p_account_expiry=> to_date('201209041006','YYYYMMDDHH24MI'),
 p_failed_access_attempts=> 0,
 p_change_password_on_first_use=> 'Y',
 p_first_password_use_occurred=> 'N',
p_allow_app_building_yn=> 'N',
p_allow_sql_workshop_yn=> 'N',
p_allow_websheet_dev_yn=> 'N',
p_allow_team_development_yn=> 'N',
p_allow_access_to_schemas => '');
 end;
the result was that the user is created fine, but the password is not valid.
Anyone knows how to export apex users with existing password to a new server?
Thanks.
Edited by: Danny on 3/12/2012 20:51

Hi,
Not sure why you say
when I run this in 4.1.1 I had to modify it to the new format as below, If you just run the workspace export sql it should create the Workspace, Groups and Users
The signature of the procedure is below. See the highlighted lines.
procedure create_fnd_user (-- Description:
-- This procedure allows for programatic and bulk creation of users.
-- Example:
-- From sqlplus logged in as the privileged flows user, first
-- ensure that the security group id is set properly, then create
-- your users.
 -- begin wwv_flow_security.g_security_group_id := 20; end;
-- begin
-- for i in 1..10 loop
-- wwv_flow_fnd_user_api.create_fnd_user(
-- p_user_name => 'USER_'||i,
-- p_email_address => 'user_'||i||'@mycompany.com',
-- p_web_password => 'user_'||i) ;
-- end loop;
-- commit;
-- end;
-- Arguments:
-- p_user_id numeric primary key of user
-- p_user_name the username the user uses to login
-- p_first_name informational only
-- p_last_name informational only
 -- p_web_password the unencrypted password for the new user
-- p_group_ids A colon delimited list of group IDs from the table wwv_flow_fnd_user_groups
-- p_developer_privs A colon delmited list of developer privs, privs include:
-- ADMIN:BROWSE:CREATE:DATA_LOADER:DB_MONITOR:EDIT:HELP:MONITOR:SQL:USER_MANAGER
-- p_default_schema A valid oracle schema that is the default schema for use in browsing and
-- creating flows
-- p_allow_access_to_schemas A colon delimited list of oracle schemas that the user is allowed to
-- parse as. If null the user can parse as any schema available to the company.
-- This does not provide privilege it only resticts privilege, so listing a schema
-- does not provide the privilege to parse as a schema, it only restricts that user
-- to that list of schemas.
-- p_attributes_XX These attributes allow you to store arbitary information about a given user.
-- They are for use by flow developers who want to extend user information.
 -- p_web_password_format Identifies the format of the web password.
-- The range of values is CLEAR_TEXT, HEX_ENCODED_DIGEST, DIGEST 
-- p_person_type "E" marks the user as external
-->
Note there is no HEX_ENCODED_DIGEST, DIGEST_V2 listed. It may work, but not obvious from the signature.
Cheers,

Deleting users with Delegated Admin

Hope anyone can help with this:
When I delete a user with Delegated Admin (For Messaging 5.x) the user
seems to be deleted in iDA, but it is not deleted in LDAP.
Therefore, I cannot re-use it's attributes (like E-mail address) for
another (new) user.
This causes all kind of problems.
I can go into the Console and through away the user, then everything
works again. But I expected iDA also to delete the user if I use the
delete button.
Any ideas? Did I forget something?
Thanks in advance,
Niels de Troye

Hi..
the nda does not remove the user... is put it in suspend mode...
you have to run the imsimta purge command to remove the user.. or to wait
the server to do that
in a day or so....
take a look at the manual to see how you can do that...
"N. de Troye" wrote:
Hope anyone can help with this:
When I delete a user with Delegated Admin (For Messaging 5.x) the user
seems to be deleted in iDA, but it is not deleted in LDAP.
Therefore, I cannot re-use it's attributes (like E-mail address) for
another (new) user.
This causes all kind of problems.
I can go into the Console and through away the user, then everything
works again. But I expected iDA also to delete the user if I use the
delete button.
Any ideas? Did I forget something?
Thanks in advance,
Niels de Troye--
Over and Out
Giorgos Kiriakidis
Technical Department
NetSmart S.A.
Panepistimiou 58.
Athens 10678
Hellas
Tel +3013302608
Fax +3013302658
Email [email protected]
This message contains confidential information intended for a specific
individual and purpose,
is protective by law. If you are not the intended recipient, you should
delete this message.
Any disclosure, coping, distribution or taking any action based on this
message is strictly prohibited.

How do I delete cascade with a PL/SQL procedure?

This script will create a PL/SQL procedure that deletes cascade. This is a post to contribute to the Oracle community. Take the code as is and test it before you use it in production. Make sure this is what you want.
Procedure Delete Cascade (prc_delete_cascade)
Description
=============
The principle is very simple. The procedure uses a table called TO_BE_DELETED to keep a list of records to be deleted. This
table keeps the table name and the rowid of those records that need to be deleted. The procedure also uses a function called
DELETE_BOTT_ROW which takes one record of the table and tries to delete it. If the deletion fails with a foreign key constraint
violation, the function parses the SQL error message (SQLERRM) to get the name of the constraint. With the name of the constraint,
the function finds the name of the child table, all the child records that have references to the parent table primary or unique key,
and the parent key primary or unique key column name. Once the child records of the failed delete are identified, the function takes their table name and rowids
and records them into the TO_BE_DELETED table by inserting records of their table name and their rowids. Al the records inserted also contain the level (which
is 1 for the original records, 2 for child records, 3 for granchild records, etc.) and the sequence number of the order in wich they
are recorded. This way, when the function picks up a record to be deleted, it takes the one with the highest level and the highest
inserted sequence, or the "bottom" record. Once all the child records of the failed delete are appended to the TO_BE_DELETED table, it calls itself
recursevely, and the function takes the record at the "bottom" of the table and tries to delete it. If it succeeds, it calls
itself recursevely to delete the next record. If it fails, it goes and finds the child records as described before and once they are
inserted into the TO_BE_DELETED table, it calls itself again recursevely to try to delete again the "bottom" record. All records
that are successfully deleted are flagged as deleted usig the flag_del column so they are not pickt up again. Once all the (parent,
child, grandchild, etc.) records are deleted, the procedure ends without commiting, giving the option to the user to commit or
rollback deletions. The table TO_BE_DELETED is, at the end of the procedure, a list of all the records that were deleted, including their table names
and the order in with they were deleted. The user then can review its content and decide to commit or rollback.
Restrictions
============
1. Single tables only. The procedure only takes one table name and a WHERE clause to identified the records to be deleted.
2. Single columns only. Ther procedure only works with single-column primary, unique and foreign key constraints.
3. Single schema only.
4. Unpredictable results with circular references.
drop table to_be_deleted purge;
create table to_be_deleted
(tname varchar2(30) -- table name
,rid rowid -- rowid
,lvl number -- level: 1=parent, 2=child, 3=grandchild, etc.
,seq_ins number -- sequence order of record inserted
,flg_del char -- flag deleted: Y=record deleted
,seq_del number -- global order of record deletion
set serveroutput on size 1000000
create or replace procedure prc_delete_cascade
(p_tname varchar2 -- table name
,p_where varchar2 -- where clause identifying records to be cascade deleted
is
dummy char;
v_sqlcode number;
v_sqlerrm varchar2(32767);
v_param_val integer := 0;
v_sql varchar2(4000);
v_ret_cde number;
e_bad_params exception;
v_iter number;
v_plvl number;
v_seq_del number;
v_max_iter number := 1000000000;
function delete_bott_row
return number
is
 v_sql varchar2(4000);
 v_ptname varchar2(30); -- parent table name
 v_ppkname varchar2(30); -- parent primary key constraint name
 v_ppkcname varchar2(30); -- parnet primary key column name
 v_prowid rowid;
 v_crowid rowid;
 v_ctname varchar2(30); -- child table name
 v_cfkname varchar2(30); -- child foreign key constraint name
 v_cfkcname varchar2(30); -- child foreign key column name
 v_ins number;
 v_seq_ins number;
 v_sqlerrm varchar2(4000);
 v_sqlcode number;
 e_const_viol exception;
 pragma exception_init(e_const_viol, -2292);
 e_max_iter_reached exception;
begin
 v_iter := v_iter + 1;
 if v_iter >= v_max_iter then
 raise e_max_iter_reached;
 end if;
 dbms_output.put_line('- Iter '||to_char(v_iter));
 dbms_output.put_line('----------');
 dbms_output.put_line('- Starting function delete_bott_row');
 v_sql := 'select tname, rid, lvl, seq_ins from (select * from to_be_deleted where flg_del = ''N'' order by lvl desc, seq_ins desc) where rownum=1';
 -- dbms_output.put_line('- SQL: '||v_sql);
 execute immediate v_sql into v_ptname, v_prowid, v_plvl, v_seq_ins;
 dbms_output.put_line('- Selected row: table name: '||v_ptname||', level: '||v_plvl||', seq: '||v_seq_ins);
 v_sql := 'delete from '||v_ptname||' where rowid='''||v_prowid||'''';
 dbms_output.put_line('- SQL: '||v_sql);
 execute immediate v_sql;
 dbms_output.put_line('- Row deleted !!!');
 v_ret_cde := 1;
 v_seq_del := v_seq_del + 1;
 dbms_output.put_line('- Mark the row deleted');
 v_sql := 'update to_be_deleted set flg_del = ''Y'', seq_del = '||to_char(v_seq_del)||' where tname='''||v_ptname||''' and rid='''||v_prowid||'''';
 -- dbms_output.put_line('- SQL: '||v_sql);
 execute immediate v_sql;
 -- dbms_output.put_line('- Updated table to_be_deleted, row marked deleted');
 -- dbms_output.put_line('- End of iter '||to_char(v_iter));
 dbms_output.put_line('----------');
 -- call function delete_bott_row recursively
 v_ret_cde := delete_bott_row;
 return 0;
exception
 when no_data_found then
 dbms_output.put_line('- Table to_be_deleted is empty, delete cascade has completed successfully.');
 v_ret_cde := 0;
 return 0;
 when e_const_viol then
 v_sqlcode := SQLCODE;
 v_sqlerrm := SQLERRM;
 v_ret_cde := v_sqlcode;
 dbms_output.put_line('>Constraint Violation. Record has children');
 -- dbms_output.put_line('Error code: '||to_char(v_sqlcode));
 v_cfkname := substr(v_sqlerrm,instr(v_sqlerrm,'.')+1,instr(v_sqlerrm,')') - instr(v_sqlerrm,'.')-1);
 dbms_output.put_line('>Child FK name: '||v_cfkname);
 select table_name, column_name
 into v_ctname, v_cfkcname
 from user_cons_columns
 where constraint_name=v_cfkname;
 dbms_output.put_line('>Child table name: '||v_ctname||'. FK column name: '|| v_cfkcname);
 select constraint_name, column_name
 into v_ppkname, v_ppkcname
 from user_cons_columns
 where constraint_name = (select r_constraint_name
 from user_constraints
 where constraint_name=v_cfkname);
 dbms_output.put_line('>Parent PK/UK name: '||v_ppkname||'. Parent PK/UK column: '||v_ppkcname);
 v_sql := 'insert into to_be_deleted(tname, rid, lvl, seq_ins, flg_del) '||
 'select '''||v_ctname||''', rowid, '||to_char(v_plvl+1)||', rownum, ''N'' '||
 'from '||v_ctname||' '||
 'where '||v_cfkcname||' =any (select '||v_ppkcname||' from '||v_ptname||' where rowid =any (select rid from to_be_deleted where tname = '''||v_ptname||'''))';
 -- dbms_output.put_line('- SQL: '||v_sql);
 execute immediate v_sql;
 select count(*)
 into v_ins
 from to_be_deleted
 where lvl = v_plvl+1
 and tname = v_ctname
 and flg_del = 'N';
 dbms_output.put_line('>Found '||to_char(v_ins)||' child records which were added to table to_be_deleted');
 v_ret_cde := delete_bott_row;
 return v_ret_cde;
 when e_max_iter_reached then
 dbms_output.put_line('Maximum iterations reached. Terminating procedure.');
 raise;
 when others then
 raise;
end delete_bott_row;
begin
dbms_output.put_line('Beginning');
dbms_output.put_line('================================');
-- validate p_table
begin
 select 'Y'
 into dummy
 from user_tables
 where table_name=upper(p_tname);
exception
 when no_data_found then
 v_param_val := 1;
 dbms_output.put_line('Table '||p_tname||' does not exist.');
 raise e_bad_params;
end;
dbms_output.put_line('- Parameter p_tname validated');
-- validate p_where
begin
 execute immediate 'select ''Y'' from '||p_tname||' where '||p_where INTO dummy;
exception
 when no_data_found then -- where clause returns no records
 dbms_output.put_line('Record(s) not found. Check your where clause parameter');
 v_param_val := 2;
 raise e_bad_params;
 when too_many_rows then -- found multiple records means it is ok
 null;
 when others then -- any other records means where clause has something wrong.
 dbms_output.put_line('Where clause is malformed');
 v_param_val := 2;
 raise e_bad_params;
end;
dbms_output.put_line('- Parameter p_where validated');
if v_param_val > 0 then raise e_bad_params; end if;
v_iter := 0;
v_plvl := 1;
v_seq_del := 0;
v_sql := 'insert into to_be_deleted(tname, rid, lvl, seq_ins, flg_del) select '''||upper(p_tname)||''', rowid, '||to_char(v_plvl)||', rownum, ''N'' from '||p_tname||' where '||p_where;
dbms_output.put_line('- Inserting initial record');
dbms_output.put_line('- SQL: '||v_sql);
execute immediate v_sql;
dbms_output.put_line('- Record(s) inserted');
dbms_output.put_line('- Calling function delete_bott_row to delete last row of table to_be_deleted');
dbms_output.put_line('-----------------------------------');
v_ret_cde := delete_bott_row;
-- dbms_output.put_line('- Back from function delete_bott_row');
-- dbms_output.put_line('Return code: '||to_char(v_ret_cde));
dbms_output.put_line('- End of procedure');
exception
when e_bad_params then
 dbms_output.put_line('Bad parameters, exiting.');
end;
show errors
spool prc_delete_cascade.log
-- Call to the procedure
exec prc_delete_cascade('xent','xent_id between 1669 and 1670')
select tname "Table Name", count(*) "Rows deleted"
from to_be_deleted
group by tname;
spool off
set lines 120
select *
from to_be_deleted
order by seq_del;
prompt Now commit or rollaback deletions.
-- commit;
-- rollback;Edited by: Rodolfo4 on Mar 23, 2011 10:45 AM

Interesting.
I see a few areas where this could be useful. Elimiating specific test records from a Test DB for example.
Some comments:
<li>Since this is a recursive logic you must add a stop criteria. In this case I would add a max iteration variable. If that one is reached, raise an error message and let the procedure stop with that error.</li>
<li>The when others exception at the end should be removed completely</li>
<li>The when others exception in the middle should be replaced by a specific exception that handles the -2292 error</li>
<li>A list of tables where no record should be deleted could be usefull. If the logic would encounter such a table, it should also stop. This would be to prevent that data from some system critical tables could be deleted per accident.</li>
<li>The reference from the FK constraint to the PK constraint should include the table name and if possible the owner (as long as you use user_* views the owner is always the same. But we could extend this to the ALL_* views). I never met a system where different tables have the identical FK constraint names, however just make this fool proof.</li>

How to provide the user with a list of files to pick from...for downloading

hai..
I have uploaded the file succesfully.. now we need to download the file...... which has been uploaded..... for that we have implemnted the Query as..
select max(id) from APEX_APPLICATION_FILES ,here the latest uploaded record will be retrieved and shown.
Now We want to provide the user with a list of files to pick from for downloading..,Dat is he should be shown the list of files which is available from dat he has to select one file to downlaod ???
can u plz tell me how to do it....
anoo

Hi Anoo,
Create a report using the following SQL statement:
SELECT ID,
FILENAME,
CREATED_ON
FROM APEX_APPLICATION_FILES
ORDER BY CREATED_ON DESCThere are other fields available from the table, but the above gives you a start.
Then edit the report's Report Attributes.
Edit the CREATED_ON column and pick a Number/Date Format to use for the display and Apply Changes
Edit the ID column. In the Column Link section, enter:
Link Text: <img src="#IMAGE_PREFIX#download.gif" alt="Download">
Target: URL
URL: p?n=#ID#
Apply Changes and run your report
Andy

How to use CMS Users with SAP BOPC NW 7.5

Hello,
I have problems importing and using CMS Users with BO PC 7.5 NW.
I am trying two types of CMS-users
1. CMS Enterprise Users created in CMS and using "Enterprise" authentication
2. SAP BW Users imported into CMS using their SAP authentication "secSAPR3")
but both don't work:
In the BOPC Admin Client, I can succesfully select Security->Users->"Add new Users". Both CMS "Enterprise Users" and CMS Users that use SAP authentication are displayed in the "Everyone" Group.
The CMS Enterprise Users are displayed as <username>, e.g. "Miller".
The CMS users with sap authentication are displayed as <SAPSystem><Client>/<SAPusername>, e.g. "KBE100/Smith".
Now If I try to import a user...
1. CMS Enterprise Users
If can successfully import CMS Enterprise Users and add them to the ADMIN Team, e.g. "Miller".
The problem is they can't be used to log in to the Admin Client and Excel Client:
E.g. I enterUser-ID "Miller" and his CMS-Enterprise-password under password after starting Excel Client, an error message shows up: "The UserID, Password or Domain cannot be authenticated. Go back and make sure you entered valid credentials" ... (same error message as if the user wouldn't exist/wrong pw.).
Seems the user wasn't added as BO PC user. Or do I need to use any prefix before the "user ID" for CMS Enterprise users in the User_ID field instead of just "Miller"?!
2. CMS Users which use SAP-authentication (users imported into CMS from BW and use SAP-authentication)
In the BO PC Admin Client, I can't import them: I go through "1. User Setup" select "KBE~100/Smith", "2. User Detail", "3. Assignments", but if I am in "4. Finish" and click on "Apply", the following error shows up:
"Failed to create directory \root\Webfolders\<AppSetName>\<Appname>" for "KBE~100/Smith".
My guess is that the operating system doesn't like the "/" in the Username - but I guess this can't be changed bc. these Users from CMS and are already displayed with the "/" between SAPSystemID~ClientNummer and username in the User-list in BOPC Admin Client!
side remark: if I create a SAP CMS Enterprise user which contains a "/" in the username (on pupose ), I am getting the same error message.
Any help, explanations and workarounds are greatly appreciated - Any solution will be awarded with maximum points!
Best Regards and thanks a lot for your help!

Hi Florian,
The problem seems indeed the file system on the bw not being able to handle "/". The automatic user import from the bw role into the CMC does not give you an option to replace the "/" character with anything else.
This should solve it:
- Go to the CMC double click the user. Delete the server part "KBE100/" and click save. Make sure the default system is set to "KBE100". The user should now be able to login from BPC with the user Smith.
Good luck,
Martin

How to create a user with read only access for ESB / BPEL Console

I need to create a user with read only access to ESB Console & BPEL Console. I have created a user
(esbreadonly) and assigned ascontrol_monitor role but user is still able to
delete services from ESB systems (such as DefaultSystem). Is there any way to
create a user that has strickly read only access to ESB Console & BPEL
Console
Thanks
Dinesh Patel

Check out this post.. I'm in the process of testing.
http://chintanblog.blogspot.com/2007/12/i-saw-numerous-people-asking-about-bpel_290.html

How to create new user with more than one default folder

hi
A new user created in OCS has only one default folder(Inbox).
I want to create new user with customized default folder.
for example:
a new user has more than one default folder(Inbox,Outbox,Draft,Dustbin...)
And also I want to automaticly enable the functions:
When sending messages, place a copy in Outbox
Keep message drafts in Draft
Move deleted messages to Dustbin
who know that?
thanks

The same reason that Apple and 3rd Party vendors put multi-size templates in one file I expect. I am trying to construct an in-house standard template for use in our company, and it is easier to manage if there is only one file to send to people rather than many - both initially and for subsequent edits / updates to the template.
Of course it would be possible to create several templates (one for each size). But since it is clear that templates can be combined, it appears sensible to do this - unless the doing of it is horridly complicated

How to create email users with open directory?

I'm trying to used a mac mini as a mail server for my domains. It works well for SMTP server/gateway for multiple locally networked systems running Lion, Mountain Lion and Maverick. The server is running Mavericks 10.9.2 server 3.1.1.
I need to add email users to it, so I tried Open Directory. I added a user with an email address with a domain listed in the mail server's domains. Then used the server app to give the user permission to use the mail service and selected to have the mail be saved on the server.
However, even though I set the mail server to accept any authentication method, I couldn't log in to get mail (via IMAP) from any email client on my computer. I tried Mail and Sparrow.
The IMAP log on the server says 'Disconnected (auth process communication failure)'. I tried everything that I could from the server app and the workgroup manager app. When using 'Mail.app', the IMAP log shows an empty user name. Trying with Sparrow shows the user name in the log, but still fails.
I restricted authentication to Open Directory, but that didn't help either. Tried with Secure Connection and without.
Am I missing something? Is there anything that I need to do to make the server accept IMAP connections? The mail service is running and handling SMTP.
The domain has an MX record pointing the server's domain name.
All the services are secured with a self signed certificate.
Doing a CLI check with 'sudo serveradmin fullstatus mail' results in the following:
[snip]
mail:protocolsArray:_array_index:0:status = "ON"
mail:protocolsArray:_array_index:0:kind = "INCOMING"
mail:protocolsArray:_array_index:0:protocol = "IMAP"
mail:protocolsArray:_array_index:0:state = "RUNNING"
mail:protocolsArray:_array_index:0:service = "MailAccess"
mail:protocolsArray:_array_index:0:error = ""
[snip]

Didn't find a way to edit my post above.
UPDATE:
Trying to log in with Thunderbird showed differently in the IMAP log. It's user disabled instead.
imap-login: Info: Disconnected (user disabled): user=<username>, method=CRAM-MD5, rip=192.168.8.101, lip=192.168.8.99, TLS
How do I 'enable' this user?

How to reconcile customer balances with control accounts

Hi!
Sanjay Here,
1. how to reconcile the customer balances pl. explain in details.
2. how to reconcile the customer balance with control accounts
3. how to do the automatic clearing through T code f.13. pl. give us the screen shots if available.
4. how to reset the T-code f.32 clearing documents, if wrongly showing in customer balance.

1. how to reconcile the customer balances pl. explain in details &
2. how to reconcile the customer balance with control accounts
Ans:- Thru report painter T-code FGI4 (Form) & Report FGI1 using cutomer summary table we can define report, which shall give the desired requirement. It give customer wise & controll account wise balances.
3. how to do the automatic clearing through T code f.13. pl. give us the screen shots if available
Ans. F.13 is used for GL automatic clearing basing on the required config for GL . Like GR/IR clearing is there in automatic posting we have to define COA, GL & creteria1, creteria2 ..... Incase of GR/IR field name can be VBUND (Purchase order). When configure this in F.13 when we check the check box GR/IR and GL system shall look for setting for automatic clearing based on creteria it shall automatically clear.
4. how to reset the T-code f.32 clearing documents, if wrongly showing in customer balance
Ans. To reset a claerinf document Tcode is FBRA. Reset the clearing doc first and reverse the doc Tcode FB08.
Thanks
Colin Thomas

How to Link AD user with Apps user

Hi,
We are in process of authenticating EBusiness suite users against their Active Directory credentials.
We did the following:
1. Import Apps users into OID
2. Import AD users into OID
We dont know how to link AD account with EBz account. Are we on right track?
Please let me know if there is any document which explains the linking process.

FYI
I sucessfully authetnicated the AD user in OID against AD password using external auth.
Do I really need to import ebusiness apps users into OID and then establish a link? Pls help me explain the process.

How to reconcile deleted users with GTC

Similar Messages

Maybe you are looking for