Improver access to protected user account mail messages via spotlight

Similar Messages

• Error when trying to access the RBAC User editor and Message tracking

  Hi,
  I am getting an error when trying to access the RBAC User editor and Message tracking on the Web Mgmt interface. I verified that the admin account trying to access is in the Organization Management group and has the correct Role Assignment Policy applied.
  I searched through this thread below and saw that matching the msExchRoleLink and msExchUserLink attributes fixed the issue. 
  https://social.technet.microsoft.com/Forums/exchange/en-US/fc568cc6-8691-4127-b70b-bcc82f9b1f7f/first-2010-cas-server-no-administrator-rights-emc-permissions-gone?forum=exchange2010
  However I have another environment where this is not the case and works just fine; the msExchUserLink attribute has a value of CN=Organization Management,OU=Microsoft Exchange Security Groups,DC=Domain,DC=Local which is different as per the issue outlined in
  the above thread so I am not convinced that this will work and also don’t want to blindly edit something in adsiedit without being sure.
  I then checked the event logs on the server and saw the below error logged;
  Current user: 'Domain/Server Services Accounts/administrator'
  Request for URL 'https://server.domain.com/ecp/default.aspx?p=AdminDeliveryReports&exsvurl=1' failed with the following error:
  System.Web.HttpUnhandledException: Exception of type 'System.Web.HttpUnhandledException' was thrown. ---> Microsoft.Exchange.Management.ControlPanel.UrlNotFoundOrNoAccessException: The page may not be available or you might not have permission to open the
  page. Please contact your administrator for the required credentials. For new credentials to take effect, you have to close this window and log on again.
     at Microsoft.Exchange.Management.ControlPanel._Default.CreateNavTree()
     at Microsoft.Exchange.Management.ControlPanel._Default.OnLoad(EventArgs e)
     at System.Web.UI.Control.LoadRecursive()
     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
     --- End of inner exception stack trace ---
     at System.Web.UI.Page.HandleError(Exception e)
     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
     at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
     at System.Web.UI.Page.ProcessRequest()
     at System.Web.UI.Page.ProcessRequest(HttpContext context)
     at ASP.default_aspx.ProcessRequest(HttpContext context)
     at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
  Microsoft.Exchange.Management.ControlPanel.UrlNotFoundOrNoAccessException: The page may not be available or you might not have permission to open the page. Please contact your administrator for the required credentials. For new credentials to take effect, you
  have to close this window and log on again.
     at Microsoft.Exchange.Management.ControlPanel._Default.CreateNavTree()
     at Microsoft.Exchange.Management.ControlPanel._Default.OnLoad(EventArgs e)
     at System.Web.UI.Control.LoadRecursive()
     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  I then had a look at the IIS permissions for ecp and owa. The account did not have permissions so I added them there but still got the same error. I’ve also tried all of the above with a newly-created account but still got the same issue.
  Any ideas as to what the above event log is specifically referring to?

  Hi,
  From your description, I would like to clarify the following thing:
  If you want to search message tracking logs, the account you use should be a member of the role groups below:
  Organization Management role group, Records Management role group, Recipient Management role group.
  Hope this can be helpful to you.
  Best regards,
  Amy Wang
  TechNet Community Support

• User account control message displays every time, minimise and close buttons not displaying, pages slow to load

  Every time I try to open a page, I get a user account control message asking for permission to proceed. I have tried to adjust the frequency of this but have been unsuccessful. This has only started to occur recently.
  Pages are slow to load and do not properly display the close, minimise etc buttons in the top right corner (these are blacked out)
  I have tried to reset firefox. This does not fix the problem.
  The problem does not occur using Internet Explorer

  There are several things to try.
  Some problems occurs when your Internet security program was set to trust the
  previous version of Firefox, but no longer recognizes your updated version as
  trusted. Now how to fix the problem: To allow Firefox to connect to the Internet
  again;
  * Make sure your Internet security software is up-to-date (i.e. you are running the latest version)
  * Remove Firefox from your program's list of trusted or recognized programs, then add it back. For detailed instructions, see
  '''[https://support.mozilla.org/en-US/kb/configure-firewalls-so-firefox-can-access-internet?esab=a&s=Configure+firewalls+&r=0&as=s Configure firewalls so that Firefox can access the Internet.]''' {web link}

• How do I access my encrypted User Account files from my Back Up hard drive?  Time Machine  was used to create the back up disk; File Vault was used to encrypt the files.

  How do I access my encrypted User Account files from my Back Up hard drive?  Time Machine  was used to create the back up disk; File Vault was used to encrypt the files.

  Thanks.  I will try going through TM.  Since my Simpletech is on the way out, I'll be plugging in a new external hard drive (other than the back-up drive) and trying to restore the library to the new drive.  Any advice or warning if this is NOT the right thing to do?
  Meanwhile, that is a great tip to do an alternate back-up using a different means.  It's been tough to figure out how to "preserve access" to digital images and files for posterity, knowing the hardware will always fail/obsolesce sooner or later, and that "clouds" are only as good as their consistent and reliable accessibility.  Upping the odds with redundancy will help dull the edge of my "access anxiety", though logically, it can never relieve it.  Will look into
  Carbon Copy Cloner.

• Protecting user accounts - Reducing user account sharing

  Dear friends,
  Our Internal Audit Dept believes that some employees may be sharing SAP users (and password) to avoid the SoD in place. With password-based authentication, that we must use, there is no chance that the system can prevent it.
  However, to reduce the share of users, and incidentally, protect unauthorized use of someone else's account, we are trying to do something similar to what many organizations do.
  The idea is that our (ECC 6.0) system stores a statistic of the computers from which a user connects, and in the event of an "unusual" login it will send a message to the user email account. It will explaining how to react if the access is not recognized, but also will inform of the the legal consequences of the misuse of his/her user account.
  We have the option of using the SAL, but prefer it to be online. Is there an user-exit, or similar, to capture the event of an user login and to send an email to the user's address, or perform other actions? The right moment seems to be the login event used by SAL...
  Surely someone has already developed a similar solution in SAP. We would appreciate any information or idea.
  Thanks in advance,
  Best regards,
  dionisio

  Dear Alex,
  I have the same experience about sharing their "only" password, and I believe, it will best address the sharing issue. Unfortunately that solution is out of our reach for now...
  About the SUSR001, I am not really looking for extra validation. Do you believe then that it is the best place for recording the terminal ID and so on?
  Thanks for you help.
  Dionisio

• I'm having a problem with logging into a FileVault-protected user account after restoring from Time Machine backup.

  Hi all,
  My computer had been running really slowly for a while, so I decided to erase the whole hard drive and reinstall the operating system, and then I was going to restore the files I cared about from Time Machine. The main account, which had all my documents and photos, was FileVault-protected. The last thing I did before erasing the hard drive was to run one last Time Machine backup. As far as I remember, I always ran Time Machine backups with the FileVaulted user logged in.
  I don't remember whether I was using FileVault 1 or 2. I had been using FileVault 1, but I installed Lion as soon as it came out and I thought I had migrated to FileVault 2 at that point.
  Once I erased the hard drive and reinstalled the operating system, I browsed the Time Machine disk and, within the Users folder, there was no folder for the main user account. When I tried to reinstall everything by restoring from Time Machine backup, I'd get the option for all the user accounts, but when I tried to log in with the main one I'd get the dreaded "You are unable to log in to the FileVault user account "User" at this time. Log in failed because an error occurred." Finally, when attempting to restore from the Time Machine backup again, I noticed something strange: After the computer got to about 10% done restoring, it declared itself completed successfully and rebooted.
  I've tried a number of tips that came up from questions about similar issues on the Apple support forum, but had no luck. Is there any way to get these files back? Did they ever even get backed up?
  Thanks.

  Hroodbwai wrote:
  I can't find it! not sure what's going on but the only folder shown is the " Shared" folder.
  Did you have only the one user account? If there were others, they should also be in the "Users" folder. You probably won't have access to the files inside them, but they should be there.
  From what can make out, it looks like it's not backed up any of the files for the filevault account. Can't see user folder when looking through previous backups in Time Machine galaxy view.
  Are you doing that from a Finder window set to your internal HD, or your computer name? It should look something like this (with the Finder in List view):
  |
  |
  I'd been logging out and backing up manually on a regular basis.
  Scheduled backups should run normally; but they won't back up the File Vault sparse bundle, nor will any run manually.
  The only time it's backed-up is when you actually log out.
  You should have seen this window on logout:
  |
  |
  followed by this one:
  |
  |
  If you didn't see the second one, or cancelled it, the account wasn't backed-up.

• Is there a way to password protect an I-Mail Message?

  Is there a way to password Protect an I-Mail Message

  Go to InstantSSL and request a free S/MIME signing certificate. It's valid for a year, only for the address you specify. You'll be prompted to set a revocation password, which you'll need if you ever want to stop the key from being trusted. I suggest you save the password as a secure note item in the keychain.
  Click the link in the message you'll receive at that address. A file named "CollectCCC.p7s" will be downloaded in your web browser. Double-click the file. It will open in Keychain Access. Confirm that you want to import the keys it contains.
  Two items will be added to the keychain you specify. Both are named "Key from secure.instantssl.com". One is of typeprivate key and one is of type public key. You'll want to delete those items when the key expires or is revoked.
  Quit and relaunch Mail. When you next compose a message from the certified address, you'll have the option to sign it.
  The first time you sign a message with the new certificate, you'll be prompted to allow Mail to use it in the keychain. Click Always Allow.
  Important:
  You must quit and relaunch Mail before the certficiate will be recognized.
  Mail that is only signed is not encrypted; anyone can read it. The recipient can be reasonably sure that it came unaltered from a person who receives mail at the sender's address. That is not proof of the sender's identity.
  To encrypt messages, the recipieint must already have gone through a similar setup process, and you must know his or her public key. The key can be sent to you in the clear, attached to a signed message, but again, you have no proof of the sender's identity. All you know is that he can receive mail at the specified address.

• Mail not showing up in secondary user account mail app

  After buying a new macbook pro, I migrated my data from my Air to this new machine (after setting up my new system) and the Pro created a new user account to handle this.  The problem is, the migrated user and its data are what I want the primary account to be.  Everything works as normal as though it is, with the annoying exception of my mail app.  The first account set up with this new machine is the only one that receives any of my emails to the mail app.
  A few things to note:
  I have verified that the migrated account (ie. the account I WANT as the primary user account for access to my emails via the mail app) has all the same email user settings as the other user account on the machine (the one I don't use as my primary).
  Also, I have pretty decent knowledge of what I'm doing and am beating my head against the wall trying to figure out the problem.
  Thinking of deleting the user account that was created when I first purchased this macbook Pro, but unsure if that will allow the account I want to use to be able to magically access my new emails coming in.  For now, if I want to read any of my new incoming emails, I have to log off my primary user account and log into the other one I don't use.  VERY annoying.  Any help?  Thanks

  If you want to see Macintosh HD on the Desktop and you don't see it, that's because you have to turn on this feature. Open the Finder menu (on the menu bar) > Preferences > General, and mark "Hard disks".
  Another way of seeing it is through Finder's sidebar. Open a Finder window, and Macintosh HD will appear on the Finder sidebar, under "Devices". If you don't see it there, open the Finder menu > Preferences > Sidebar, and mark "Hard disks"

• Accessing URL of links in HTML e-mail message via Services

  I'm trying to write a simple service (in Automator) so that when I right-click on a URL, I can send that URL directly to my Instapaper account (rather than opening the link in a browser, and then clicking my bookmarklet to save to Instapaper.)  I have it working for bare URLs included in the text, but I'd like to also be able to do it for hyperlinks in HTML-formatted Mail messages.  Is there a way in Automator to access the underlying URL for a link, rather than the displayed link text?  Clearly some of the built-in items in Mail's context menu (e.g. Open Link, Copy Link) do that, but I can't see how to get access to the URL in Automator.
  Thanks in advance for your help with this,
  Eric

  Hi Scott,
  "Unapealing" it is, but that doesn't get it very high on the long requirements list.
  To make it more appealing to reward points is higher up there and I think everyone would love to see that.
  Nevertheless I added it to the list.
  Best, Mark.
  P.S. On one hand I don't care about points, on the other I get teased in the office when I am not in the top ten, although with all this great contributions from you guys and girls, I am letting go of that goal. So don't bother.
  Message was edited by: Mark Finnern

• Networked user accounts, mail passwords not saving or notes?

  Hi there,
  I have a mac mini set up as a server with latest software. On it i have 20 networked users which use between them for different mac mini's.
  Problem which i have come across and i haven't found a solution yet. When i created them emails on there user accounts the incoming mail password won't save? On occasion i has saved, but once log out of the user and log back in the password has gone. which then it prompts me to keep typing the password in and won't save the password. This is very frustrating!!
  I have also just noticed when i put message in notes and then log out and log in the the message has gone. This got me thinking it could be something with the user account not saving any data that put in? I don't really want to reformat the server if i don't have to.
  If anyone has solution to this problem, it would really handy to know?

  I click the Note button, nothing happens. The feature is completely out of service. I don't understand. Am I missing something obvious? I have tried the keystrokes too, no reaction at all, no errors, just can't use Notes, at all! rrrrrrrrrrrrrrrr! Please help.
  Update: I opened Console to see if I could find any errors immediate after trying to create a note and this is what I found:
  6/26/08 10:28:31 PM Mail[236] * Assertion failure in +[NoteView updateFontAndRule:], /SourceCache/Mail/Mail-924/MessageViewer.subproj/NoteView.m:149
  6/26/08 10:28:31 PM Mail[236] * WebKit discarded an uncaught exception in the webView:didFinishLoadForFrame: delegate: <NSInternalInconsistencyException> font-family cannot be nil
  6/26/08 10:28:42 PM Mail[236] * Assertion failure in +[NoteView updateFontAndRule:], /SourceCache/Mail/Mail-924/MessageViewer.subproj/NoteView.m:149
  6/26/08 10:28:42 PM Mail[236] * WebKit discarded an uncaught exception in the webView:didFinishLoadForFrame: delegate: <NSInternalInconsistencyException> font-family cannot be nil
  6/26/08 10:28:42 PM Mail[236] * Assertion failure in +[NoteView updateFontAndRule:], /SourceCache/Mail/Mail-924/MessageViewer.subproj/NoteView.m:149
  6/26/08 10:28:42 PM Mail[236] * WebKit discarded an uncaught exception in the webView:didFinishLoadForFrame: delegate: <NSInternalInconsistencyException> font-family cannot be nil
  6/26/08 10:29:06 PM Mail[236] * Assertion failure in +[NoteView updateFontAndRule:], /SourceCache/Mail/Mail-924/MessageViewer.subproj/NoteView.m:149
  Message was edited by: tfire1

• I'm unable to grant full access to 2nd user account. What am I missing

  While our MacBook Pro is out for repairs, I need a way to process my wife's emails and other business. So I'm trying to set up a 2nd user account for my wife on our iMac (running 10.7.5 Lion). Unfortunately, every step I've tried has failed to grant permission for her account to access the iMac desktop or launch applications other than Safari.
  Here's what I've tried:
  1. I created an account with my wife's name and password under Users & Groups in System Preferences.
  2. In her Users & Groups account, I granted her Adminstrator privileges.
  3. In the Sharing folder in System Preferences, I selected all the folders except those labeled "remote" and "xgrid" (whatever that is). I granted Read & Write privileges for each one. These included two Desktop folders, and I added the folder for Applications.
  4. I made sure File Sharing was turned on, along with Printer Sharing, Web Sharing, Screen Sharing, Internet Sharing, etc.
  5. Under Sharing Options, I noted a checkmark in the box labeled "Share files and folders using AFP", although the "number of users connected" was 0. I left that alone.
  6. Because several sharing choices were listed as "blocked by firewall," I turned the Firewall setting off.
  Despite all this, when I log in as my wife, I cannot launch any major applications except Safari, whether from the Dock or Applications folder. In fact, most of the apps in the folder are grayed out. And when I try to access the Desktop, Other Files, and various other folders, I receive a message that her account "does not have permission to see the contents." Why not? What have I overlooked?
  This is becoming an urgent problem, because there's business that must be conducted. I have had similar problems with the iMac from the start, when it refused to accept me as the rightful owner of files that were transferred from our older Mac Pro dwesktop. Yikes!
  Any help on this will be very much appreciated. Thanks.
  Message was edited by: David Henderson7

  Hey thomashfrompa,
  Thanks for the question. I understand that you are experiencing issues with iTunes for Windows. The following article outlines the error message you are receiving and a potential resolution:
  iTunes 11.1.4 for Windows: Unable to install or open
  http://support.apple.com/kb/TS5376
  Some Windows customers may experience installation issues while trying to install or open iTunes 11.1.4.
  Symptoms may include:
  "The program can't start because MSVCR80.dll is missing from your computer"
  "iTunes was not installed correctly. Please reinstall iTunes. Error 7 (Windows Error 126)”
  "Runtime Error: R6034 - An application has made an attempt to load the C runtime library incorrectly"
  "Entry point not found: videoTracks@QTMovie@@QBE?AV?$Vector@V?$RefPtr@VQTTrack@@@***@@$0A@VCrashOnOverf low@@***@@XZ could not be located in the dynamic link library C:\Program Files(x86)\Common Files\Apple\Apple Application Support\WebKit.dll”
  Resolution
  Follow these steps to resolve the issue:
  Check for .dll files
  1. Go to C:\Program Files (x86)\iTunes and C:\Program Files\iTunes and look for .dll files.
  2. If you find QTMovie.DLL, or any other .dll files, move them to the desktop.
  3. Reboot your computer.
  Note: Depending on your operating system, you may only have one of the listed paths.
  Uninstall and reinstall iTunes
  1. Uninstall iTunes and all of its related components.
  2. Reboot your computer. If you can't uninstall a piece of Apple software, try using the Microsoft Program Install and Uninstall Utility.
  3. Re-download and reinstall iTunes 11.1.4.
  Thanks,
  Matt M.

• BOE XI 3.1 - 'View only access' to ADMIN User Account

  Guys,
  we are using BOE XI 3.1 FixPack 1.6 version.
  I want to create a Test ID (for example, Test_ID) which is having ADMIN Access. But i need to provide 'View Only Access' to this Test ID account. Means this Test ID can enter into CMC. But should not modify/delete/add/ users or usergroups or folders in CMC.
  Is it possible to provide 'View Only Access' to the user who is having ADMIN access?
  Much appreciated. Thank you.

  Hi Seb,
  This is not working. I tried the same in one of the Test ID (This is an Enterprise Account).
  But i am getting the message "Account information not recognized: Access is denied" in the CMC login page.
  I logged in via Administrator and verified the Test ID. The account is enabled.
  Please any help.
  Thank you.
  regards,
  Kiruba v.r.

• Unable to access my Administrator User Account with my CORRECT password.

  The correct password for the Peter Thiess Administrator User account is bandicoot. All I get is the jiggle. I managed to change the password for the account by booting up with OS X Installer disk with the "C" key. Went to Utilities - reset password. Changed password in appropriate fields, added a hint and clicked Save. When I logged on again, the account accepted the new password with the note:
  "you are unable to log in to the user account Peter Thiess at this time"...and THEN the screen jiggled.
  Still no access to all my main stuff including my iTunes library that I built over the past 4 yrs.
  Some weeks ago I opened my secondary acct. (Peter Alexander), which I created for house guests to play. Since I never use this account, I wanted to refresh my memory as to what I had on it. While I was here, I decided to delete "cache" and "cookies" from 2 libraries in the account. I also placed 2 or 3 folders that "seemed" empty (0Mb was in the bottom of the window of the files) in the trash. I don't remember where I plucked those folders from, from Peter Alexander acct. (If a folder is in the computer, even if it seems empty - there must have been a reason for it to be there.) Put them all in Trash and chose the Secure Delete Trash. The beachball started spinning...too long. Attempted to Stop Emptying Trash, so I could swith over to plain old Empty Trash and be done with it. Wasn't allowed to and the beachball kept spinning. This was taking too long, and I wanted to log into my main Peter Thiess Administrator account again. Attempted Restart - spinning ball. Attempted Shut Down, Log Out Peter Thiess, and Force Quit...more spinning bball. Finally I just held down the Power button. That turned it off.
  Rebooted. Went back to the Peter Alexander account to finish emptying Trash. Trash finally emptied. Clicked Restart, got back to the opening window with both my accounts listed and clicked
  Peter Thiess this time. Entered correct password and got "Peter Thiess does not have account privileges at this time" Tried several times, same result each time. Went to Help, then System Prefs, and finally Accounts, and discovered the Peter Thiess Administrator account was de-selected (gray instead of black lettering)?? Anyway, I tried several more times with my known, positively password-then tried some variations until the window "you tried passwords too many times, try again later".
  Took the laptop to the MacSupportStore in Brooklyn, and due to a misunderstanding had the password to the Peter Alexander account, instead of the Peter Thiess account changed. When this mistake was pointed out, they investigated the correct account this time and told me the HD is dying, and that it would cost @ $400 for data rescue/retreval and a new HD. Not having any discretionary funds, I opted to get a Mercury external 500Gb HD instead. I want to rescue my data from my Peter Thiess Administrator account before the internal HD totally gives up the ghost. Suggestions? With deepest appreciation, Peter Thiess (alias - joblo22)

  >spins round a few times and then requests them again
  Mac Spinning Wheel https://forums.adobe.com/message/5470608
  -Similar in Windows https://forums.adobe.com/message/5853430
  or
  Sign Out When Sign In http://forums.adobe.com/thread/1450581?tstart=0 may help
  -and http://helpx.adobe.com/creative-cloud/kb/unable-login-creative-cloud-248.html
  -and 'looping' https://forums.adobe.com/thread/1504792

• Access Denied creating user accounts through vba

  Hello,
  I have a MS-Access application that runs on a Windows 2012 server. My customer logs into the server using RDP. The MS-Access application is started up automatically by means of the environment variable in the user settings. The customer needs to be able
  to create new windows users for this application, simply by clicking a button.  
  The VBA script to create users works, because when I start up the MS-Access application with my own logged on Administrators account, the new users get created. If my customer tries it, he gets 'Access Denied' error. I have added his user account to
  the Power Users group, but that did not solve the problem. I also tried to make him member of the DCOM Users Group, the 'Access Denied' error remains...
  I do not want to give him administrator priviliges, because he is 'just a customer'...
  What do I need to do for this setup to work? I tried altering some DCom settings, but frankly I do not have enough knowledge to feel comfortable with this. Hope anybody can help me out here...
  best regards, Rob

  Is this a standalone server? Only administrators can create user accounts, so there is no work around for that. You could look at something that has the administrator account/password stored and launch PSEXEC or something else in an elevated session behind
  the scenes but that is a security volunerability because the credentials are stored.
  If the account is being created in an Active Directory environment you could delegate permissions to the appropriate OU for your customer.
  Mark B. Cooper, President and Founder of PKI Solutions Inc., former Microsoft Senior Engineer and subject matter expert for Microsoft Active Directory Certificate Services (ADCS). Known as “The PKI Guy” at Microsoft for 10 years.

• Unexpected Access to Other Users' Accounts

  I just discovered tonight that I when I search for files, files in other user's accounts on this computer show up. I can open them too, but throwing them away requires that user's password. Searching the internet to see if this is a normal feature, I find questions about how to access other user's files and comments that even administrators cannot do this. Is this normal or abnormal behavior? Fast user switching is not enabled. Does anyone know where solid information can be found about the "barriers" between users' accounts? Thanks.

  Ah, thanks, BDAqua. I see that at the user level, each user folder is set to read only. So if the users aren't saving their files in their enclosed "no access" folders, but at their base user level, they are read only. If we set each user folder to "no access", then others would not be able to access the shared folder either. Is there a way to set access priviledges for users on this computer so that they're the same for users on this network? Users on the network only see the "drop box" when they open a user folder.