Is it Possible to Create a Role Owner Group in CUP

Similar Messages

• Is it possible to create dimension roles in AWM?

  Hi,
  Is it possible to create dimension roles in AWM like the way we have in OWB ?
  If yes, please direct on the way to do this.
  Many thanks in advance for your kind inputs.
  Piyush

  I think what you need is to use the ALIAS option that is part of the DEFINE DIMENSION statement
  DEFINE DIMENSION ALIASOF
  The DEFINE DIMENSION ALIASOF command defines a dimension alias for a simple dimension. An alias dimension has the same type and values as its base dimension. Typically, you define an alias dimension when you want to dimension a variable by the same dimension twice.
  Additionally, You can use a LIMIT statement to limit alias dimensions and define variables and relations using an alias dimension. However, you cannot maintain an alias dimension directly; instead you maintain its base dimension using MAINTAIN.
  Syntax
  DEFINE name DIMENSION ALIASOF dimension [TEMP] [AW workspace] [SESSION]
  Arguments
  name
  The name of the object you are defining. For general information about this argument, see the main entry for the DEFINE command.
  DIMENSION ALIASOF
  If you look at this example if provides a great example of how to use this feature:
  http://download.oracle.com/docs/cd/B19306_01/olap.102/b14346/dml_x_decimal006.htm#ABC1485326
  But of course the main issue here is how to generate the standard form metadata required to support this feature and make the dimension alias avaliable and visible within AWM. That is the difficult (and I would say impossible) part of the process since this feature is not supported by the AW XML API (at least I don't think it is, you could check the API docs to see if this is supported). if it is not supported then the management of this feature would all have to be controlled via OLAP DML commands (load dimension members etc) but you would still not be able to include it within a cube definition and then maintain that cube using AW XML API.
  Does that help?
  Keith

• Is there a possibility to create a new contact-group on an iPhone

  Actually I can't find a possibility to create a new contact-group as I do directly on an iMac. Any other function are similar in the area of iMac or iPhone.
  On the iPhone it's only possible to create a new contact (of person). Is this function not available?

  Hi Ralph9430
  Thank you very much for your quick answer.
  I know the Sync-function and it's active. But I wanna create a new group on my iPhone, not on my iMac. I couldn't find this function like a cross ("+") on my iPhone in the group-menu in Contacts. Do you see that problem?

• Is it possible to create a role with PERM_READER_EXTENSIONS_WEB_APPLICATIONS without Service Invoke?

  I need to restrict user access to Workspace processes.  Using the adminui, service management, I gave my test group INVOKE_PERM permissions to this service.  This works good.  The users of the test group can only see this process.  However, for these users the SOAP calls do not work.  I am using a reader extended form and I am getting the error below.  If I add the Reader Extension Web Application role, the SOAP call work, but the user of the test group can see all other processes.  I created a role and gave it PERM_READER_EXTENSIONS_WEB_APPLICATIONS, Service Read, INVOKE_PERM and other combinations.  This role only works if I add Service Invoke and this give users access to all processes.  How can I get a role to provide the Reader Extension without using Service Invoke?
  An error has occurred. See error log for more details.
  User TORRES, ALEJANDRO G does not have the Service Invoke Permission on Service ReaderExtensionsService.

  I found the answer to my question.  I had to give INVOKE permission to all the services used by the process.

• Is it possible to create user-roles associations at run-time?

  basically I need to be able to add a user to a role programmatically before the role-based content is displayed to the user.
  Example: I have a role called 'Manager' created in the portal. When a user logs on, I detect that the user has the attribute 'job title' = 'Manager' so I add the user to the 'Manager' role and the portal shows the content for the 'Manager' role.

  Hi Umesh,
  Yes, we can add users to the Role programatically.We did that.
  Just see the below code to get some idea...
  IUserFactory userFactory = UMFactory.getUserFactory();
  IRoleFactory roleFactory = UMFactory.getRoleFactory();
  IRole role = roleFactory.getRole(roleName);
  String userId = "";
  //Here userIDS is the list of user-id s to assign.
  for (Iterator i = userIDS.keySet().iterator(); i.hasNext();) {
     userId = (String) i.next();
     role.addUserMember(userId);
  Hope this helps you.
  Cheers....
  Satya
  [Pl reward points if this is helpful]

• Is it possible to create a custom role based on SELECT_CATALOG_ROLE?

  I have a scenario where one user needs to see the DDL of another user:
  HR schema:
  CREATE OR REPLACE TYPE "HR"."CONTACT" IS OBJECT (
  HOME VARCHAR2(40),
  BUSINESS VARCHAR2(40)
  SCOTT schema:
  CREATE OR REPLACE TYPE "SCOTT"."EMPLOYEE_CONTACT" IS OBJECT (
  EMP_NUMBER NUMERIC,
  EMP_NAME VARCHAR2(50),
  HOME HR.CONTACT,
  WORK HR.CONTACT
  When logged in as SCOTT, I can execute the following to get the DDL for EMPLOYEE_CONTACT:
  SELECT DBMS_METADATA.GET_DDL('TYPE','EMPLOYEE_CONTACT') FROM DUAL;
  but when I try to analyze it further, i.e. get the DDL for HR.CONTACT:
  SELECT DBMS_METADATA.GET_DDL('TYPE','CONTACT', 'HR) FROM DUAL;
  I get the following error:
  13:11:59 [SELECT - 0 row(s), 0.000 secs] [Error Code: 31603, SQL State: 99999] ORA-31603: object "CONTACT" of type TYPE not found in schema "HR"
  ORA-06512: at "SYS.DBMS_METADATA", line 4018
  ORA-06512: at "SYS.DBMS_METADATA", line 5843
  ORA-06512: at line 1
  ... 1 statement(s) executed, 0 row(s) affected, exec/fetch time: 0.000/0.000 sec [0 successful, 0 warnings, 1 errors]
  If I grant the SELECT_CATALOG_ROLE to SCOTT, then I can get the DDL details for HR.CONTACT.
  I am reluctant to recommend to my users SELECT_CATALOG_ROLE (or SELECT ANY DICTIONARY) as these permissions seem overly broad.
  Is it possible to create a role that is based on SELECT_CATALOG_ROLE but limits SCOTT's ablity to get DDL to only artifacts from HR?

  Hi Yes,
  But this means you have to rebuild your list in content columns and a as a content Type.
  best regards,
  Paul Keijzers
  Check my website http://www.kbworks.nl or follow me on
  @KbWorks be sure to Check my
  SharePoint-Specialist.nu for dutch informationworkers check
  Wat Is microsoft SharePoint.nl for dutch readers who want to know what
  microsoft office365 is.

• How to create Users/Roles for ldap in weblogic without using admin console

  Is it possible to create Users/Roles for ldap in weblogic without using admin console? if possible what are the files i need to modify in DefaultDomain?
  or is there any ant script for creating USers/Roles?
  Regards,
  Raghu.
  Edited by: user9942600 on Jul 2, 2009 1:00 AM
  Edited by: user9942600 on Jul 2, 2009 1:58 AM

  Hi..
  You can use wlst or jmx to perform all security config etc.. same as if it were perfomred from the admin console..
  .e.g. wlst create user
  ..after connecting to admin server
  serverConfig()
  cd("/SecurityConfiguration/your_domain_name/Realms/myrealm/AuthenticationProviders/DefaultAuthenticator")
  cmo.createUser("userName","Password","UserDesc")
  ..for adding/configuring a role
  cd("/SecurityConfiguration/your_domain_name/Realms/myrealm/RoleMappers/XACMLRoleMapper")
  cmo.createRole('','roleName', 'userName')
  ...see the mbean docs for all the different attributes, operations etc..
  ..Mark.

• Create user role

  I would like to know if is possible to create user role on the CodldFusion server.
  Your help iand information is great appreciated,
  Regards,
  iccsi,

  See http://forums.adobe.com/message/4907241#4907241

• Authorization maintenance - Create Collective Roles

  Hello.
  Two questions:
  1- I would like to know if it's possible to create a collective role based on four other normal roles. Then create a normal role using the option copy role through transaction PFCG, based on the collective role?
  2- Is the creation of the collective role trustworthy and a recommended procedure by SAP when the four normal roles are considered complex (having many objects and transactions)?
  When creating the collective role will there be object or transaction loss?
  Thanks!

  Hello Bruno,
  Here are the answers:
  1- I would like to know if it's possible to create a collective role based on four other normal roles. Then create a normal role using the option copy role through transaction PFCG, based on the collective role?
  Yes it is possible to create collective role based on four other normal roles. However you can not create a normal role as a copy of collective role. A collective role can be copied into a collective role. However if I understand correctly then what want is that the authorizations present in 4 normal roles should get merged into one single role. If that is case then do the following.
  Create a normal role, Go to change mode and then to menu. If you want to copy role menus of 4 normal roles then please use the option copy role menu from other roles. Even if you don't copy role menu the next step remains the same. Go to authorizations tab. Here goto menu bar: EditInsert AuthorizationsFrom profile. Now supply the profiles of the 4 normal roles one by one. You might find a lot of entires in red since organization level has to be maintained. You need to do that manually. Once done generate the role.
  2  Is the creation of the collective role trustworthy and a recommended procedure by SAP when the four normal roles are considered complex (having many objects and transactions)?
  When creating the collective role will there be object or transaction loss?
  Yes it is trustworthy. No data loss occurs.
  Regards.
  Ruchit.

• Creating the New Update groups in case of the Credit Management

  Hi Can any one help out in the following requirement:
    Is it possible to Create a new update group in case of the Credit Management?SAP standard provides only three update groups viz., 000012, 000015 and 000018. We would like to have a customized group in order to meet the clients requirements.
            Also is it possible to update the open contracts value in the credit exposure?
     Thanks & Regards
     Soma

  HI
  You can define your own credit groups  according to your client's requirement.
  here is the path....
  IMG > SPRO>SALES AND DISTRIBUTION --> BASIC FUNCTIONS -->
  CREDIT MANAGEMNT / RISK MANAGEMENT --> CREDIT MANAGEMENT
  -->  DEFINE CREDIT GROUPS --> NEW ENTRIES AND CREATE YOUR OWN
  CREDIT GROUPS AS UR UR REQUIREMENTS.
  hope this will help u ...
  bye

• OBIEE 11g  - Not able to see existing reports which are created by specific owner but I could able to see Admin role user reports.

  OBIEE 11g  - Not able to see existing reports which are created by specific owner but I could able to see Admin role user reports.
  Appreciated if you could able to help as soon as possible as I don' have back up for these disappeared reports.
  Pleas let me know if any additional information needed.

  Hi
  Thank you for the reply.
  Here one thing I would need to mention that those are created by me on last week, but when I check those today, I could not able to see or even admin also not able to see those. For sure no migration and updations happend over the week end, really not able to debug whats the issue around. Unfortunately I haven't taken back up as well.
  Please could you help and let me know whats the root cause and how I could able to restore.
  Best regards,
  Kumar

• GRC AC V10 - one approval step for manager and role owner

  Hello Community,
  I have one, perhaps easy, question. Where is it possible to maintain the solution of one approval step for manager and roleowner, if both are unique.
  E.g.:
  simple approval workflow: manager stage afterwards roleowner stage afterwards auto-provisioning
  So if the request is routed to the manager and the manager is also the roleowner of the requested authorization role (same UserID). The user has to approve one and the same request twice.
  Is it possible in V.10 to change the config that the user has only to approve the request once? And then to decide on which relevant stage settings are valid for this process.
  Thanks,
  Alexa

  Hi Alexa,
  We have had a similar questions raised in a project. In an ideal world, a single "Sign-off approval" would be a great functionality where the same user has to approve the same consecutive stages, but the reason for different stages would entail that the responsibilities entailed per stage differ, e.g. Line Manager would just check the over request, and the role owner etc may be reviewing the elegibility of a specifc role etc.
  If it is likely to be the same person reviewing the 2 consecutive stages, maybe a single stage workflow would be sufficient to cover this scenario.
  I think the logic you are trying to configure in the workflow is possible but will require alot of work with knowing how to create a clever custom workflow with BRF+ or the actual WF stuff in SAP itself.

• Creating a role

  I am trying to create some roles under one of my schemas and iwant to use OEM for that.
  The user has the create role privs bur it cant log in to OEM because it is a restricted user.
  I need to add the objcects and privs to the role but if i log in as sysdba or dba it doesn let me add the ojets because the dba is not the owner of the object.
  How do i work this out?
  Ashish

  If you want a user to be able to use OEM to do anything, you have to grant that user sufficient privileges to use OEM. In 9i, that's the SELECT ANY DICTIONARY privilege if memory serves. I believe in 8i it's the SELECT CATALOG role.
  Be sure you understand the implications of these grants before you start giving them out, though.
  Justin
  Distributed Database Consulting, Inc.
  www.ddbcinc.com

• CHaRM-Is that possible to create multiple Transport Request in UC

  HI Gurus,
  Quick question on ur.gent correction using Solution Manager CHaRM in EHP1. Is it possible to create multiple transport request(TR) for single ur.gent correction (UC). DO NOT confuse with transport task.
  For example, after I created transport request and developer start working and release the task, realised to add another transport request for same UC. When I tried, it did not create any TR but checked the message found that
  Schedule Manager: Monitor
  Job Status: Processing completed, but with warnings
  Program Name: /TMWFLOW/SCMA_TRORDER_CREATE
  Action to be checked: Ur.gent Correction: Create Transport Request
  There is already an open request, XXXXXXXXXX, for this project
  So only way I can do that I released the TR and able to create another TR.
  May be wondering why I need to create another TR, why not create TASK and work on that.
  But this is the requirement at our company.
  I will appreciate the effort and time to provide me the solution of this.
  Thanks
  Ava

  Hi Ragu,
  That's really quick turn around. Unfortunately not able to found whatever you mentioned in your message. Here is detail,
  I navigate to Actions - Depending on Status, found the entry as
  Trans. Type     StatProf         UserStatus     Seq     Action in SAP Change Manager
  SDHF             SDHFHEAD   E0002            10       CREATE_HF
  SDHF             SDHFHEAD   E0002            20       CREATE_REQ
  SDHF             SDHFHEAD   E0002            30       SAVE_PARTNER
  SDHF             SDHFHEAD   E0002            40       SET BO LINKS
  Where SDHF - Ur.gent Correction
             E0002 - In Development
             CREATE_HF -        Create an Instance in SAP Change Manager
             CREATE_REQ -     Create Transport Request with Task
             SAVE_PARTNER - Save Partners in Respective Partner Roles
             SET BO LINKS -     Sets Links to Business Objects
  I don't see any OPEN_TR.
  Any other place need to make change.
  Thanks
  Ava

• GRC 10 - Business role, no role owner but associated role have owner....

  Dear All,
  In GRC 5.3 we perform the following mapping:
  Business Role A mapped with (no owner)
  - Technical Role 1 (from ECC with Owner1)
  - Technical Role 2 (from CRM with Owner2)
  - Technical Role 3 (from HR with Ownwer3)
  IN GRC 5.3 we have a business role mapped with multiple child role(techinical role) from other system.
  GRC 5.3 request is able to close and provisioned as it can see owners from child role.
  Now in GRC 10, we did the same. Create a business role, then mapped the child role (technical role). Unfortunately, when manager approves the workflow reroute to "NO OWNER DETOUR PATH" because it cannot see the technical role owner.
  Seems like GRC 10 is only looking at business role owner. We are unable to add Owner1, Owner2, Owner3 to the business role because when one of the owner approves, it will provision all the technical roles. We might have owners who will reject their role.
  Please advice.
  Jacky

  Hi Mustafa,
  you can use end user personalization to avoid a role owner to approve roles for himself. Define a dedicated EUP for role owner stage and restrict via "Approve/Reject Own Requests" like shown below:
  Does this answer your question?
  Regards,
  Alessandro