Inventory Org Based security

Similar Messages

• MOAC / "Org-Based" Security

  Hello,
  I'm developing custom pl/sql for submitting concurrent requests/sets. For reference, here is what my initialization 'block' looks like in the pl/sql:
  apps.fnd_global.apps_initialize(user_id, resp_id, app_id);
  apps.mo_global.set_policy_context('M');
  apps.mo_global.init(appShortName);
  (or)
  apps.fnd_global.apps_initialize(user_id, resp_id, app_id);
  apps.mo_global.set_policy_context('S', org_id);
  apps.mo_global.init(appShortName);
  (depending on whether the user chooses a 'multi-org' context or 'single-org' context)
  I just have a few general questions.
  1) Is the "mo_global.set_policy_context" followed by "mo_global.init" proper form?
  2) I understand that if you choose multi-org (set_policy_context('M')), it reads the 'fnd_global.apps_initialize'd user's "allowed orgs" from his profile options (I forget the exact ones at this moment). Is this correct?
  3) Is the sole purpose of "multi-org" security for performing multiple operations on multiple orgs without having to switch responsibility?
  4) Most importantly (saved this one for last), I'm reading about the various different kinds of security (namely, http://docs.oracle.com/cd/E14223_01/bia.796/e14219/security.htm#BGBIFAIG):
  Operating Unit Org-Based security
  Inventory Org-Based Security
  Company Org-Based Security
  Business Group Org-Based Security
  HR Org-based Security
  Payables Org-Based Security
  Receivables Org-Based Security
  SetID-Based Security
  Position-Based Security
  Ledger-Based Security
  My question is, are all of these various "securities" all managed with organizations? In other words, will my code (above) enable users to use ANY of these different kinds of security, if they so choose?

  Hey so seeing as this question hasn't really been answered yet I figure I'll give it another go.
  I'm going to be very specific this time:
  I run PL/SQL scripts against the EBS database in order to do things like schedule requests/request-sets. The first thing I do (always) is initialize the apps context:
  apps.fnd_global.apps_initialize(u_id, r_id, a_id);
  Next, depending on the situation (still unsure when/why, but whatever), we initialize the org context. This is done by performing exactly one of the following steps.
  apps.mo_global.set_policy_context('M', null);
  OR
  apps.mo_global.set_policy_context('S', org_id);
  OR
  apps.mo_global.init('appname');
  Now, the ORG_ID comes from this statement:
  SELECT organization_id FROM apps.org_organization_definitions2 WHERE organization_name = 'blah'
  Again, I don't know why/when we need to do this or apparently what any of these things do but it's kind of beyond the scope of what I do. SOMEBODY chooses one of these, depending on their mood (or whatever factors :) ). Based on my model, the following are the possibilities thus far:
  apps.fnd_global.apps_initialize(u_id, r_id, a_id);
  OR
  apps.fnd_global.apps_initialize(u_id, r_id, a_id);
  apps.mo_global.set_policy_context('M', null);
  OR
  apps.fnd_global.apps_initialize(u_id, r_id, a_id);
  apps.mo_global.set_policy_context('S', org_id);
  OR
  apps.fnd_global.apps_initialize(u_id, r_id, a_id);
  apps.mo_global.init('appname');
  After this, I use
  apps.fnd_submit.submit_program('appName','progName','STAGEXYZ', args); <-- however many times I need
  apps.fnd_submit.set_request_set('appname','requestSetName');
  OR
  apps.fnd_request.submit_request('appName','progName','description',starttime,FALSE, args);
  My question is twofold:
  1) Is this model generic enough? In other words, without doing anything extra, will people be able to do pretty much everything you could think of, at least in terms of running concurrent requests / sets? Will I ever - EVER - need to chain "set_policy_context" with "init"? <-- I would really love a yes/no answer because I am in no way/shape/form an EBS expert. I've read all the docs that I've been presented with thus far but I haven't found a straight answer to this yet.
  2) I understand there are all different kinds of "org-based" security. Could I use my current code to initialize an inv_org, for example? If not, where could I turn for help? Are there other tables I should use for inv_orgs, hr_orgs, etc?
  THANKS! YOU ARE THE BEST!

• Is HR Org based security supported in OBIA

  Hi all
  I just wanna know whether HR Org-based Security is supported in OBIA with Oracle Apps as Source ?
  We have already implemented security based on Business Group Id and it is working good.
  Now we want to implement the security based on Organization ID.
  Plz advice..
  Thanx

  Hi all
  I just wanna know whether HR Org-based Security is supported in OBIA with Oracle Apps as Source ?
  We have already implemented security based on Business Group Id and it is working good.
  Now we want to implement the security based on Organization ID.
  Plz advice..
  Thanx

• Difference between Structural and Org. Based Security

  Hi
     Could anyone please explain the difference between Structural and Org. based security
  Also could anyone please point to relevant documents.
  Thanks

  Structural authorization:
  ex: assigning roles to position and not to userids.. Listed below are some links that may help you to get started in understanding "Structural authorization".
  http://www.sap-img.com/human/structural-authorization-vs-role-authorization.htm
  http://www.sap-press.de/katalog/buecher/inhaltsverzeichnis/gp/titelID-1071
  https://websmp205.sap-ag.de/~form/ehandler?_APP=00200682500000001337&_EVENT=DISPLAY&COURSE=ADM940
  HB

• HR Business Group Based Security

  Hi All,
  We have implemented the EBS and OBIEE integration without any security enabled.
  We have tried to implement the Business Group Org Based Security.
  When we have enabled that initialization block and saved it.
  SQL used in intialization block is
  SELECT
  DISTINCT 'BUSINESS_GROUP',
  TO_CHAR(FND_PROFILE.VALUE_SPECIFIC('PER_BUSINESS_GROUP_ID', USER_ID, RESPONSIBILITY_ID, RESPONSIBILITY_APPLICATION_ID))
  FROM
  +(SELECT+
  USER_ID,
  RESPONSIBILITY_ID,
  RESPONSIBILITY_APPLICATION_ID
  FROM
  FND_USER_RESP_GROUPS
  WHERE
  START_DATE < SYSDATE
  AND (CASE WHEN END_DATE IS NULL THEN SYSDATE ELSE TO_DATE(END_DATE) END) >= SYSDATE
  AND USER_ID = (CASE WHEN 'VALUEOF(NQ_SESSION.EBS_SSO_INTEGRATION_MODE)' = 'Integrated'
  THEN VALUEOF(NQ_SESSION.OLTP_EBS_USER_ID) ELSE (SELECT USER_ID FROM FND_USER WHERE USER_NAME = ':USER') END)
  AND RESPONSIBILITY_ID = (CASE WHEN 'VALUEOF(NQ_SESSION.EBS_SSO_INTEGRATION_MODE)' = 'Integrated'
  THEN 'VALUEOF(NQ_SESSION.OLTP_EBS_RESP_ID)' ELSE RESPONSIBILITY_ID END)
  AND RESPONSIBILITY_APPLICATION_ID = (CASE WHEN 'VALUEOF(NQ_SESSION.EBS_SSO_INTEGRATION_MODE)' = 'Integrated'
  THEN 'VALUEOF(NQ_SESSION.OLTP_EBS_RESP_APPL_ID)' ELSE RESPONSIBILITY_APPLICATION_ID END))
  It is retuning error.
  +[nQSError: 13011] Query for Initialization Block 'Business Groups' has failed.+
  +[nQSError: 17001] Oracle Error code: 932, message: ORA-00932: inconsistent datatypes: expected CHAR got NUMBER+
  at OCI call OCIStmtExecute.
  Do any one have idea about how to reslove this issue ?
  Thanks & Regards
  Vishwanath

  the first thing I can think of is: have you integrated eBS with OBIEE?
  I know this initblock just works fine, but when I look to you error... I really don't have a clue...
  But it must be the RESPONSIBILITY_ID or the RESPONSIBILITY_APPLICATION_ID.. but both are numbers already...

• Inventory Org Security R12

  Hi
  Could anyone confirm, how we could restrict the List of Values in the "Change Organisation Window", so that access to Inventory Orgs can be restricted.
  The idea is to restrict access to Organizations basing on the role. So, we cannot use Organization Access as it is set at a responsibility level.
  regards

  Hi,
  You have made it clear but, since the roles boil down to responsibilities, can you think of having different responsibilities for different roles (menus are same but org access are different)?
  I know that this will make you have more resp but looks like that is the minimum customization for the requirement.
  Thanks
  Karthik.

• Even after set Mo:Security and HR:Security,user not able to restrict require Inventory Org.

  Hi All,
  Even after set Mo:Security and HR:Security,user not able to restrict require Inventory Org.
  Both the profile option have set at responsibility level.
  Reagrds,
  Sandesh

  2785222 wrote:
  Hi All,
  Even after set Mo:Security and HR:Security,user not able to restrict require Inventory Org.
  Both the profile option have set at responsibility level.
  Reagrds,
  Sandesh
  Hi Sandesh,
  First note that HR:Security Is for HRMS module for restricting data for respective OUs
  MO:Security is for other Modules such as Inv, PO, AR, AP etc., for restricting data
  Change the inventory Org to the one you want and then query data...
  Hope it helps.
  Regards,
  Shahzad.H.Magsi

• Using container managed form-based security in JSF

  h1. Using container managed, form-based security in a JSF web app.
  A Practical Solution
  h2. {color:#993300}*But first, some background on the problem*{color}
  The Form components available in JSF will not let you specify the target action, everything is a post-back. When using container security, however, you have to specifically submit to the magic action j_security_check to trigger authentication. This means that the only way to do this in a JSF page is to use an HTML form tag enclosed in verbatim tags. This has the side effect that the post is not handled by JSF at all meaning you can't take advantage of normal JSF functionality such as validators, plus you have a horrible chimera of a page containing both markup and components. This screws up things like skinning. ([credit to Duncan Mills in this 2 years old article|http://groundside.com/blog/DuncanMills.php?title=j2ee_security_a_jsf_based_login_form&more=1&c=1&tb=1&pb=1]).
  In this solution, I will use a pure JSF page as the login page that the end user interacts with. This page will simply gather the input for the username and password and pass that on to a plain old jsp proxy to do the actual submit. This will avoid the whole problem of having to use verbatim tags or a mixture of JSF and JSP in the user view.
  h2. {color:#993300}*Step 1: Configure the Security Realm in the Web App Container*{color}
  What is a container? A container is basically a security framework that is implemented directly by whatever app server you are running, in my case Glassfish v2ur2 that comes with Netbeans 6.1. Your container can have multiple security realms. Each realm manages a definition of the security "*principles*" that are defined to interact with your application. A security principle is basically just a user of the system that is defined by three fields:
  - Username
  - Group
  - Password
  The security realm can be set up to authenticate using a simple file, or through JDBC, or LDAP, and more. In my case, I am using a "file" based realm. The users are statically defined directly through the app server interface. Here's how to do it (on Glassfish):
  1. Start up your app server and log into the admin interface (http://localhost:4848)
  2. Drill down into Configuration > Security > Realms.
  3. Here you will see the default realms defined on the server. Drill down into the file realm.
  4. There is no need to change any of the default settings. Click the Manage Users button.
  5. Create a new user by entering username/password.
  Note: If you enter a group name then you will be able to define permissions based on group in your app, which is much more usefull in a real app.
  I entered a group named "Users" since my app will only have one set of permissions and all users should be authenticated and treated the same.
  That way I will be able to set permissions to resources for the "Users" group that will apply to all users that have this group assigned.
  TIP: After you get everything working, you can hook it all up to JDBC instead of "file" so that you can manage your users in a database.
  h2. {color:#993300}*Step 2: Create the project*{color}
  Since I'm a newbie to JSF, I am using Netbeans 6.1 so that I can play around with all of the fancy Visual Web JavaServer Faces components and the visual designer.
  1. Start by creating a new Visual Web JSF project.
  2. Next, create a new subfolder under your web root called "secure". This is the folder that we will define a Security Constraint for in a later step, so that any user trying to access any page in this folder will be redirected to a login page to sign in, if they haven't already.
  h2. {color:#993300}*Step 3: Create the JSF and JSP files*{color}
  In my very simple project I have 3 pages set up. Create the following files using the default templates in Netbeans 6.1:
  1. login.jsp (A Visual Web JSF file)
  2. loginproxy.jspx (A plain JSPX file)
  3. secure/securepage.jsp (A Visual Web JSF file... Note that it is in the sub-folder named secure)
  Code follows for each of the files:
  h3. {color:#ff6600}*First we need to add a navigation rule to faces-config.xml:*{color}
      <navigation-rule>
  <from-view-id>/login.jsp</from-view-id>
          <navigation-case>
  <from-outcome>loginproxy</from-outcome>
  <to-view-id>/loginproxy.jspx</to-view-id>
          </navigation-case>
      </navigation-rule>
  NOTE: This navigation rule simply forwards the request to loginproxy.jspx whenever the user clicks the submit button. The button1_action() method below returns the "loginproxy" case to make this happen.
  h3. {color:#ff6600}*login.jsp -- A very simple Visual Web JSF file with two input fields and a button:*{color}
  <?xml version="1.0" encoding="UTF-8"?>
  <jsp:root version="2.1"
  xmlns:f="http://java.sun.com/jsf/core"
  xmlns:h="http://java.sun.com/jsf/html"
  xmlns:jsp="http://java.sun.com/JSP/Page"
  xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
      <jsp:directive.page
  contentType="text/html;charset=UTF-8"
  pageEncoding="UTF-8"/>
      <f:view>
          <webuijsf:page
  id="page1">
  <webuijsf:html id="html1">
  <webuijsf:head id="head1">
  <webuijsf:link id="link1"
  url="/resources/stylesheet.css"/>
  </webuijsf:head>
  <webuijsf:body id="body1" style="-rave-layout: grid">
  <webuijsf:form id="form1">
  <webuijsf:textField binding="#{login.username}"
  id="username" style="position: absolute; left: 216px; top:
  96px"/>
  <webuijsf:passwordField binding="#{login.password}" id="password"
  style="left: 216px; top: 144px; position: absolute"/>
  <webuijsf:button actionExpression="#{login.button1_action}"
  id="button1" style="position: absolute; left: 216px; top:
  216px" text="GO"/>
  </webuijsf:form>
  </webuijsf:body>
  </webuijsf:html>
          </webuijsf:page>
      </f:view>
  </jsp:root>h3. *login.java -- implent the
  button1_action() method in the login.java backing bean*
      public String button1_action() {
          setValue("#{requestScope.username}",
  (String)username.getValue());
  setValue("#{requestScope.password}", (String)password.getValue());
          return "loginproxy";
      }h3. {color:#ff6600}*loginproxy.jspx -- a login proxy that the user never sees. The onload="document.forms[0].submit()" automatically submits the form as soon as it is rendered in the browser.*{color}
  {code}
  <?xml version="1.0" encoding="UTF-8"?>
  <jsp:root xmlns:jsp="http://java.sun.com/JSP/Page"
  version="2.0">
  <jsp:output omit-xml-declaration="true" doctype-root-element="HTML"
  doctype-system="http://www.w3.org/TR/html4/loose.dtd"
  doctype-public="-W3CDTD HTML 4.01 Transitional//EN"/>
  <jsp:directive.page contentType="text/html"
  pageEncoding="UTF-8"/>
  <html>
  <head> <meta
  http-equiv="Content-Type" content="text/html;
  charset=UTF-8"/>
  <title>Logging in...</title>
  </head>
  <body
  onload="document.forms[0].submit()">
  <form
  action="j_security_check" method="POST">
  <input type="hidden" name="j_username"
  value="${requestScope.username}" />
  <input type="hidden" name="j_password"
  value="${requestScope.password}" />
  </form>
  </body>
  </html>
  </jsp:root>
  {code}
  h3. {color:#ff6600}*secure/securepage.jsp -- A simple JSF{color}
  target page, placed in the secure folder to test access*
  {code}
  <?xml version="1.0" encoding="UTF-8"?>
  <jsp:root version="2.1"
  xmlns:f="http://java.sun.com/jsf/core"
  xmlns:h="http://java.sun.com/jsf/html"
  xmlns:jsp="http://java.sun.com/JSP/Page" xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
  <jsp:directive.page
  contentType="text/html;charset=UTF-8"
  pageEncoding="UTF-8"/>
  <f:view>
  <webuijsf:page
  id="page1">
  <webuijsf:html id="html1">
  <webuijsf:head id="head1">
  <webuijsf:link id="link1"
  url="/resources/stylesheet.css"/>
  </webuijsf:head>
  <webuijsf:body id="body1" style="-rave-layout: grid">
  <webuijsf:form id="form1">
  <webuijsf:staticText id="staticText1" style="position:
  absolute; left: 168px; top: 144px" text="A Secure Page"/>
  </webuijsf:form>
  </webuijsf:body>
  </webuijsf:html>
  </webuijsf:page>
  </f:view>
  </jsp:root>
  {code}
  h2. {color:#993300}*_Step 4: Configure Declarative Security_*{color}
  This type of security is called +declarative+ because it is not configured programatically. It is configured by declaring all of the relevant parameters in the configuration files: *web.xml* and *sun-web.xml*. Once you have it configured, the container (application server and java framework) already have the implementation to make everything work for you.
  *web.xml will be used to define:*
  - Type of security - We will be using "form based". The loginpage.jsp we created will be set as both the login and error page.
  - Security Roles - The security role defined here will be mapped (in sun-web.xml) to users or groups.
  - Security Constraints - A security constraint defines the resource(s) that is being secured, and which Roles are able to authenticate to them.
  *sun-web.xml will be used to define:*
  - This is where you map a Role to the Users or Groups that are allowed to use it.
  +I know this is confusing the first time, but basically it works like this:+
  *Security Constraint for a URL* -> mapped to -> *Role* -> mapped to -> *Users & Groups*
  h3. {color:#ff6600}*web.xml -- here's the relevant section:*{color}
  {code}
  <security-constraint>
  <display-name>SecurityConstraint</display-name>
  <web-resource-collection>
  <web-resource-name>SecurePages</web-resource-name>
  <description/>
  <url-pattern>/faces/secure/*</url-pattern>
  <http-method>GET</http-method>
  <http-method>POST</http-method>
  <http-method>HEAD</http-method>
  <http-method>PUT</http-method>
  <http-method>OPTIONS</http-method>
  <http-method>TRACE</http-method>
  <http-method>DELETE</http-method>
  </web-resource-collection>
  <auth-constraint>
  <description/>
  <role-name>User</role-name>
  </auth-constraint>
  </security-constraint>
  <login-config>
  <auth-method>FORM</auth-method>
  <realm-name/>
  <form-login-config>
  <form-login-page>/faces/login.jsp</form-login-page>
  <form-error-page>/faces/login.jsp</form-error-page>
  </form-login-config>
  </login-config>
  <security-role>
  <description/>
  <role-name>User</role-name>
  </security-role>
  {code}
  h3. {color:#ff6600}*sun-web.xml -- here's the relevant section:*{color}
  {code}
  <security-role-mapping>
  <role-name>User</role-name>
  <group-name>Users</group-name>
  </security-role-mapping>
  {code}
  h3. {color:#ff6600}*Almost done!!!*{color}
  h2. {color:#993300}*_Step 5: A couple of minor "Gotcha's"_ *{color}
  h3. {color:#ff6600}*_Gotcha #1_*{color}
  You need to configure the "welcome page" in web.xml to point to faces/secure/securepage.jsp ... Note that there is *_no_* leading / ... If you put a / in there it will barf all over itself .
  h3. {color:#ff6600}*_Gotcha #2_*{color}
  Note that we set the <form-login-page> in web.xml to /faces/login.jsp ... Note the leading / ... This time, you NEED the leading slash, or the server will gag.
  *DONE!!!*
  h2. {color:#993300}*_Here's how it works:_*{color}
  1. The user requests the a page from your context (http://localhost/MyLogin/)
  2. The servlet forwards the request to the welcome page: faces/secure/securepage.jsp
  3. faces/secure/securepage.jsp has a security constraint defined, so the servlet checks to see if the user is authenticated for the session.
  4. Of course the user is not authenticated since this is the first request, so the servlet forwards the request to the login page we configured in web.xml (/faces/login.jsp).
  5. The user enters username and password and clicks a button to submit.
  6. The button's action method stores away the username and password in the request scope.
  7. The button returns "loginproxy" navigation case which tells the navigation handler to forward the request to loginproxy.jspx
  8. loginproxy.jspx renders a blank page to the user which has hidden username and password fields.
  9. The hidden username and password fields grab the username and password variables from the request scope.
  10. The loginproxy page is automatically submitted with the magic action "j_security_check"
  11. j_security_check notifies the container that authentication needs to be intercepted and handled.
  12. The container authenticates the user credentials.
  13. If the credentials fail, the container forwards the request to the login.jsp page.
  14. If the credentials pass, the container forwards the request to *+the last protected resource that was attempted.+*
  +Note the last point! I don't know how, but no matter how many times you fail authentication, the container remembers the last page that triggered authentication and once you finally succeed the container forwards your request there!!!!+
  +The user is now at the secure welcome page.+
  If you have read this far, I thank you for your time, and I seriously question your ability to ration your time pragmatically.
  Kerry Randolph

  If you want login security on your web app, this is one way to do it. (the easiest way i have seen).
  This method allows you to create a custom login form and error page using JSF.
  The container handles the actual authentication and protection of the resources based on what you declare in web.xml and sun-web.xml.
  This example uses a statically defined user/password, stored in a file, but you can also configure JDBC realm in Glassfish, so that that users can register for access and your program can store the username/passwrod in a database.
  I'm new to programming, so none of this may be a good practice, or may not be secure at all.
  I really don't know what I'm doing, but I'm learning, and this has been the easiest way that I have found to add authentication to a web app, without having to write the login modules yourself.
  Another benefit, and I think this is key ***You don't have to include any extra code in the pages that you want to protect*** The container manages this for you, based on the constraints you declare in web.xml.
  So basically you set it up to protect certain folders, then when any user tries to access pages in that folder, they are required to authenticate.
  --Kerry                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

• Position Based Security

  Hi All,
  How to find out whether the security implemented is position based or role based. and in position based is there any difference in delaing with authorisation changes,  compared to roled based security.
  Can some one please let me know the information.
  Regards,
  Sandhya

  Hi,
  the difference is on how you assign the roles to users. Position based means that roels are assigned according to the position the user has in the org-structure.
  Roles are assigned to the position and each user who is assigned to the position gets those roles assigned.
  You can identify such roles as they are assigned indirectly (blue colour in SU01 and PFCG(tab users)) and if hr-org is activated and maintained in your system.
  Administrators should know of how they assign roles in your system. Just ask them.
  b.rgds,
  Bernhard

• Creating a new Inventory Org with predetermined ORG_ID

  Hi,
  We are in the process of Re-implementing 11.0.3 system to R12. In 11.0.3 there are some external systems talking to inventory organizaions based upon the ORG_ID. (Which is hard coaded in external system)
  Is there any way by which while creating new Inventory Organization in R12, we can retain the old ORG_IDs? If not, how safe teh backend update will be?
  Any help will be highly appreciated.

  This will be delicate and you will have to practice it well but it can certainly be done.
  Couple of options.
  1) Just before going to the form, set the current_value of the HR_ORGANIZATION_UNITS_S appropriately.
  2) Open the form and just before saving a new org, use help > diagnostics > examine to look at the value of the organization_id. If it is populated, change it. If it is not populated, then this option is not possible.
  3) Put a trace on the form; find which tables are hit with an insert and then write a pre-insert database trigger to change the value of the organization_id. Drop the trigger(s) immediately after saving the new organization.
  Let me know if you need more help.
  Sandeep Gandhi
  Independent Techno-functional consultant

• Can the inventory orgs of OU2 be used in the OU1 in teh ASCP plan...

  Hello Gurus,
  I defined an ASCP plan in one of the operating units OU1 and i have used all the inventory organizations for that ASCP plan which is definde in the OU1.
  There is an aonther Operating Unit OU2 where in some inventory orgs cater products to OU1.............
  Can i use the inventory organization of the OU2 to be used in the ASCP plan that i have defined in the OU1
  Please help me in clarifying this doubt at the earliest

  ASCP does not care about OU's. It only looks at inventory organizations.
  enable the org for collections in the ASCP instances form and set org access for the responsibility used in the organization security form (Adv Planning Administrator)

• Inventory Module Upgrade from 11i to R12 - How to Copy Inventory Orgs.

  Hi All,
  We are working on R12 Upgrade project for Item Conversion.
  Requirement is to upgrade and bring all the Item setup and data from 11i to R12.
  As part of setup requirement, there are around 1900 Inventory Orgs in 11i instance. Please let me know what is the best approach / strategy to copy and bring over the 1900 Inventory Orgs.including the Master Org from 11i to R12.
  Your inputs will be highly appreciated.
  Thanks in Advance !
  Regards,
  Nityanand.

  Reporting Set of Books (MRC) in 11i is called as Alternate Currency Ledgers (ALC Ledger) in R12.
  After 11i upgrade, the reporting SOBs (MRCs) will be automatically changed to ALCs in R12.
  Some are primary and some are used as reportingI hope you are talking about MRCs.
  When we upgrade from 11i to r12, all the SOBs would be created as primary ledgers (as per oracle)If they are not MRCs and it is getting upgraded as primay ledger, you may create new ALC for your requirement.
  In that case you may need a datafix from Oracle to fix the old data.
  By
  Vamsi

• How can I turn off the WLS 6.1 security in order to develop my own application-based security module?

  Dear Colleagues,
  I am currently developing a J2EE application using WLS 6.1.
  My team and I have to implement a security requirement to suit our company's needs.
  The security requirements are that, users' password need to be aged (30 days maximum) and we need to provided a GUI front-end (JSP) to allow users to change their password when these expire after 30 days.
  Our internal contacts in the company, have already taken the lead to find out about whether we will be able to use the WLS 6.1 platform to do this and the answer we got back, was.
  Now we need to develop our own security module.
  I have 2 questions:
  1. How can we turn off the WLS security in order develop our own application-based security module?
  2. How can we develop a security module that allows us to age users' password and provide them with facilities to change their passwords when these expire?
  At the moment, we are using the default BEA WebLogic login.jsp page and there some configuration in the web.xml for this. I will be grateful if you could advise me on how to turn this default security off so that we can write our own security module.

  hi,
  1.You can write your own realm in 61 which can plugged for your security
  calls.
  2. once you write your ownrealm.. you can access it through weblogic
  api/ur api..
  thanks
  kiran
  "Richard Koudry" <[email protected]> wrote in message
  news:3dd0d081$[email protected]..
  Dear Colleagues,
  I am currently developing a J2EE application using WLS 6.1.
  My team and I have to implement a security requirement to suit ourcompany's needs.
  >
  The security requirements are that, users' password need to be aged (30days maximum) and we need to provided a GUI front-end (JSP) to allow users
  to change their password when these expire after 30 days.
  >
  Our internal contacts in the company, have already taken the lead to findout about whether we will be able to use the WLS 6.1 platform to do this and
  the answer we got back, was.
  >
  Now we need to develop our own security module.
  I have 2 questions:
  1. How can we turn off the WLS security in order develop our ownapplication-based security module?
  >
  2. How can we develop a security module that allows us to age users'password and provide them with facilities to change their passwords when
  these expire?
  >
  At the moment, we are using the default BEA WebLogic login.jsp page andthere some configuration in the web.xml for this. I will be grateful if you
  could advise me on how to turn this default security off so that we can
  write our own security module.

• What is the mean of using Portal with Role Based security as entry point

  Hi Experts we have requirement of integration of Portal and MDM
  I am completely new to the MDM. So please give me some idea , what is the meanin for following points.
  1) Using the Portal with Role Based security as entry point for capacity and Routing Maintaince(These two are some modules).
  2) Additionally , Portal should have capability to enter in to the MDM for future master data maintence. Feeds of data will need to be come from  SAP 4.6c
  Please give me the clarity of what is the meanin of second point
  Regards
  Vijay

  Hi
  It requires the entire land scape like EP server and MDM server both should be configured in SLD.
  Your requirement is maintaing and updating the MDM data with Enterprise portal.We have some Business Packages to install in Portal inorder to access the functionality of MDM.
  Portal gives you a secure role based functionality of MDM through Single sign on (login into the portal access any application) to their end users.
  Please go through this link
  http://help.sap.com/saphelp_mdmgds55/helpdata/EN/45/c8cd92dc7f4ebbe10000000a11466f/frameset.htm
  You need to develope some custom applications which should be integrated into the portal to access MDM Server master data
  The estimation involves as per your requirement clearly
  Its depends upon the Landscape settings, Requirement complexity,Identify how many number of custom applications need to be developed
  Regards
  Kalyan

• How to create new cost groups in inventory org using API or open interface?

  Hi,
  I would be very kind of you if you can provide me with a solution to my question below.
  I have a requirement of copying all the cost groups from one inventory org and creating the same cost groups in another inventory org using programmatically. Is there any API or Open interface that can be used to create the cost groups in the new inventory organization? If not can you suggest any other way of fulfilling this requirement?
  I would highly appreciate your help.
  Thanks,
  Ranajit

  hi,
  think, it's not possible.
  look here:
  http://help.sap.com/saphelp_47x200/helpdata/en/4f/71e05a448011d189f00000e81ddfac/frameset.htm
  "The field groups and their respective fields are defined in system tables"
  kind regards
  Andreas