Is there way 2 give users VIEW only in Adm Services Console(essbase)?

Similar Messages

• Give user Read-Only access to one table in a database.

  Does anyone know how to give a user account Read-only access to 1 table within a SQL Server Database using SQL Server Management Studio? I don't want the account to be able to access any other tables in the database, just the one table. I'm not a sql programmer,
  so if there is a way to do it in Sql Server Managment Studio settings that would be the best.

  Using Management Studio, I assume you already have a login and user for that person. If not,
  How to: Create a SQL Server Login http://msdn.microsoft.com/en-us/library/aa337562.aspx
  How to: Create a Database User
  http://msdn.microsoft.com/en-us/library/aa337545.aspx
  1. Then, in Object Explorer, expand the Database, expand
  Tables, right-click the table you want, and then click
  Properties. 
  2. On the Permissions page, under Users or Roles, click
  Search, then Browse, etc, until you find the user. Click
  OK until you are back to the Permissions page.
  3. In the Permission for <user>section, find the
  SELECT (that's the read permission) and click the Grant
  box. Then click OK.
  Rick Byham, Microsoft, SQL Server Books Online, Implies no warranty

• SharePoint 2013 allows downloaded even for users with "view only" permissions

  I have a new on premises SharePoint 2013 server and assigned a single user "view only" rights to a document library. In the "permission levels" window, this permission is described as "Can view pages, list items,
  and documents. Document types with server-side file handlers can be viewed in the browser but not downloaded."
  Once I gave the user that permission, I noticed he was able to view documents in the library but the "but not downloaded" part does not seem to be working. The user can still download documents to his local desktop and SharePoint does not prevent
  it. The "download a copy" option appears and the user can use it.
  My goal is to make all documents in this library such that users can only view them in the browser and not download a local copy. How I do that?
  Thanks for your help.

  Not entirely positive :-) 
  However, you have no server-side handlers in place today without WAC installed, so that portion of the View Only permission wouldn't be applicable.
  Note that WAC must be installed on its own server and if your SharePoint server is extranet or public facing, it needs to have a valid, public SSL certificate. Also, WAC should always be run over SSL regardless if it is public facing or not as the token
  sent between the SharePoint server and WAC is the same as having a username and password for the user making the request.
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• OAM View-Only Access in 11.5.10.2?

  Is there any way to give a user view-only, or inquiry, access to OAM?
  Or is there any way to give a user any access (view-only or not) to OAM without granting that user the "System Administrator" responsibility?
  We are on 11.5.10.2 (CU2).
  For SOX compliance, we need to remove "System Administrator" from our developers' EBS IDs. But these developers then lose any access to OAM when their "System Administrator" responsibility assignment is removed.
  Auditors might find this surprising, but our developers need access -- even if View-Only -- to OAM in Production in order to monitor complex things like Workflow processes, managers, etc.
  11.5.10.2 does have 2 seeded OAM responsibilities, but they do not seem to grant a user any access to OAM: "OAM Patch History" and "OAM Read Only Mode".
  Any suggestions would be appreciated.

  Did you figure out a way to achieve this?I believe this cannot be achieved -- Please log a SR to confirm this with Oracle support.
  Thanks,
  Hussein

• Allowing View Only right to CMC in BO 4

  We are trying to create a VIEW only access to our BO consultant in our production CMC.  But there are certain things that are hard to control.  For example, Authentication - Is there a way to make it VIEW only.  How about other options listed below - is there a way to make it so he can view it but not change it;
  Deleting Licensing Info
  not allow changes to Configuration of Audit database
  in Settings not allow hot backup durations, cluster members, Reset Account Activity - Peak Licenses user
  We are using BO 4.0 SP5 Patch 5.4 on a windows server.
  Thanks
  Abdul

  Hi,
  you can find more information hete:
  What's new in BI 4.0 SP06 - Specify CMC Tab access with user group
  Please be aware that this functionality is available only with SP06 and later.
  Regards
  -Seb.

• How to configure SCCM 2012 discover user group only?

  Hi,
  I'm wondering if there is a way to discover user group only (ignore computer group) in SCCM 2012?
  Jason

  Hi,
  Also note that by default, only security groups are discovered. However, you can discover the membership of distribution
  groups when you select the checkbox for the option Discover the membership of distribution groups on
  the Option tab
  in the Active Directory Group Discovery Properties dialog box.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• View-only access to Catalyst 2960/2960S device manager

  I have noticed that when I access the (Web-based) device manager on a Catalyst 2960 or 2960S switch, the authentication prompt (from within IE, at least) includes the phrase, "The server <switch-hostname> at level_15_or_view_access requires a username and password." This would seem to imply that it's possible to configure view-only (a.k.a. read-only) access to the device manager, which would be perfect for first-level support personnel (in our environment). I reviewed the information on how to configure local authentication for the Web server (leveraging "ip http authentication local" among other commands), but the examples are a bit too broad for me understand how to specifically (and only) allow someone coming in via HTTP(S) to gain read-only access to the device manager. (Command line access should be denied entirely for the view-only user, if possible, or at least limited to commands that can't modify the switch's configuration.) Assuming this is possible, could someone cite the command sequence required?
  Thanks,
  Mike

  Hi,a customer want a user which has view-only rights on his catalyst switches. I created a user whit privilige level 7.If you log into the CLI everything is fine. But by trying to log into the web page the system wants a level 15 user.Is their any possibility to grant the level 7 user "view-only" rights on the Catalyst Device Manager?Thanks.Thanks.
  Hi,
  Check out the below link for SDM for read only user configuration
  http://conft.com/en/US/docs/routers/access/cisco_router_and_security_device_manager/application/notes/SDMcli.pdf
  Hope to Help !!
  Ganesh.H
  Remember to rate the helpful post

• Is there a way to view only the apps I'm not using?

  If I attach all my iOS devices to my computer, is there a way to view only the apps in my iTunes library that are NOT being used by any device?  To make it easier to know which I'm not using, so I can delete them off my computer and free up some space?

  In Settings:
  General->Network->Cellular Data: Switch off.

• In ios 6 I could choose an artist on the music app and see all his albums in a list. Now, with ios 7, it shows all the songs from every album, making it EXTREMELY hard to see all the albums. Is there a way to minimize this view and see only the albums?

  Hello!
  I need some help with the music app in ios 7...
  In ios 6, I could choose an artist from the "srtists" view and it would show me all his albums as a list. Now, in ios 7, when I choose an artist, it shows me every song underneath every album, making it impossible to see al the albums at once! Is there anyway to minimize this view so I could see only the albums' titles as a list?
  It is VERY annoying. I would very much appreciate any help on this! 
  Thank you

  Exactly!
  This is all about the experience and accessibility. I don't even mind if the new desing is beautiful or not, but if I find myself, like you, avoiding looking for my music, my experience becomes frustrating. I have about 35 albums of a single artist and I used to love going over them and choose the right thing for me, especially being on the road a lot, and now I have to think twice about even entering his name.
  I really hope Apple will take those kind of things into consideration when they issue updates for ios 7, and maybe also give us back the goole search which was embeded into the spotlight search (which is really not that big of a request).
  And for your 4s - get the new iphone, it's MUCH better

• Is there any way i can let another iphone user view my recieved and sent messages?

  Is there any way i can let another iphone user view my recieved and sent messages?

  Of course. Just show them your phone screen, and let them browse through your messages - the same way you would do so yourself.

• Is there a way to track "pages viewed" progress with PDF's?

  Is there a way to track "pages viewed" progress with PDF's?
  Example: Student downloads a PDF from school portal -- Teacher can track who downloaded PDF, when and how many pages were view (where student stopped)? Similar to Flexpaper?

  The only other way I can come up with at the moment is by submitting the data via a URL to your server... The user will still have to allow the URL to be opened, though.

• Is there a way to identify user accounts that need to be locked?

  Hi,
  I am trying to write a script that will lock user accounts for employees that are being outprocessed (e.g. quit, fired, went to a different project).  The trouble I'm having is that the way I'm notified is by email from security that a person (first and last name provided in the email) is being outprocessed.  However, that individual may have multiple accounts and the account names don't always follow the same format like 'first initial last name'.  For example, I may have a user named John Doe with accounts like jdoe_sensor1, jdoe_sensor2, etc.  Then there could be a user Alice Smith with account like alice_s_sensor1, alice_s_sensor2, etc.  I know I can use OEM to lock users, but there are two main problems with that.  1 -- Finding the users, then clicking on each user and then locking them one by one.  And 2 -- I may not need to lock them right away.  For example, the email from security may say "Lock all accounts for FIRSTNAME LASTNAME at the end of the day on a certain date.  So I was hoping to write a script to identify the accounts, lock the user, and then verify they were locked and run it in cron, so the accounts get locked when they're supposed to.  An example of the SQL statements I'm thinking of are:
  SELECT username, user_id, account_status FROM dba_users WHERE username like upper ('%$user%');
  ALTER user $user ACCOUNT LOCK;
  SELECT username, user_id, account_status FROM dba_users WHERE username like upper ('%$user%');
  So basically, I need a way to find out what the possible combinations are for $user.  Is there a view besides dba_users which has more detailed information like first name and last name?  I'm thinking if there is, then I can query that and find out all the accounts that user has and then plug those into the lock script.    
  Thanks!
  Jon

  There is a very large problem with being given only a person's name and not their user ids.
  For example, if you have two people with same (or similar) name, then what?
  John Doe
  John J. Doe
  This seems to be very common, and even more so with some very common names:
  Smith
  Chin
  etc
  So even if you have a lookup table:
  Name
  Userid
  John Doe
  johndoe
  John Doe
  jdoe
  John J. Doe
  johnd
  J. Doe
  jdoe2
  John D
  john_d
  Jon Doe
  jond
  Jim Doe
  jidoe
  Johnny Doe
  jonydoe
  Really, nowadays, with different policies, practices, etc, I've seen all manner of userids. When you're given somebody to "close down", you should really press them to provide userids, not just first name, last name.
  After all, if they tell you to lock all "John Doe's" accounts, how do you know that the id "johnd" isn't supposed to be locked? or even "jond" ??  You really have no idea. Did security mean "John J. Doe" and didn't provide his initial? What if they both happen to have J middle initial, but once's just registered with the company because the other one existed?
  My thought: If you're not given the specific userid(s), you're running a pretty good risk (at some point in time) that you will lock an id you shouldn't, or not lock an id you should.

• Is there any way to create admin role only for one resource.

  Hi all,
  I am trying to create an admin role with 'update user' capability. But I want to restrict the user(with the admin role) to be able to update a user's attribute only for one resource, The user(with the admin role) should not be able to update the attributes of the other resources which a user have.
  Is there any way to create admin role only for one resource?
  I customized the tabbed user form to show only one resource attribute (deleting the missing fields and adding my tab for the resource) and then assigned this new User Form to the user(with the admin role) in security tab.
  It works fine. But the problem is that if any user(with the admin role) is also admin of some other resource then he/she will not be able to view the other resource attributes.
  Please suggest,
  thanks

  The loop function always repeats the same region so of course the fade is also copied. So option+drag the original region to make a (non clone) copy, fade the first region and loop the second one (which you just copied).

• MAM Client - Only User View Manager Link Visible

  Hi,
  I have followed the configuration steps as mentioned in the configuration guide for MAM2.5 SR2.
  but after deploying the application in mobile device, Only the User View Manager Link is visible to me.
  Details about client and server version is as follows
  1. MI client 2.5 SP11
  2. WebAS Server 6.40 SP09
  3. Backend IDES server
  Only thing which I am not sure is whether the plugin
  <b>R/3 Plug-in 2004.1 SP01 for Mobile Asset Management 2.5</b> is added in the Backend or not.
  <b>Is there any way to check whether the Plugin is added or not?
  Also Could this be a problem why we are not able to see other menu specific to MAM?</b>
  Appreciate your help in providing some solution for the above mentioned probelm.

  HI sathya,
  in my last post , actually i was talking about  
  WAS sp 09 and  client sp 11.
       not sure , whether  sp11 client can successfully sync with sp09 WAS.
    it might be one of the reasons?.
  have u changed ur application ?.  or using the standard application?.(i mean added syncbo's or not).
      just check the meRepMeta.xml file , is there any reference to MAM25_090 (item).?
     just change the trace to Information and after sync,
  just look whether there is any MAM25_090 reference in the log.
  <b>Sathya just check,,
  1) meta_childRow.dat
  2) meta_topRow.dat
  3) meta_field.dat </b>
  <b> if there is no data in  MAM25_090 , there will not be one MAM25_090.dat file in the data directory.</b>
  just check in the
  meta_childRow.dat  ,
  MAM25_090 entry got created or not in the folder corresponding to the first sync.
                                   Regards
                                   Kishor Gopinathan
  Message was edited by: Kishor Gopinathan
  Message was edited by: Kishor Gopinathan

• Best way to give restricted execute access on pssession to remote user on a server

  we have some windows 2008 R2 development environment servers. On these servers we are planning to provide access to developers via PSremoting. We want to restrict the users in such a way that they can only run .bat files present in a certain UNC path. What
  is the best way to achieve the same. Can we create a PSSession Configuration for this?
  Please note that we are planning to enable WSmanCredSSP on client (it is already enabled on server).
  Also, is it possible to give such an access where user can only login to server using powershell's PSsession and not through interactive remote desktop connection.
  ApoorvaW

  Hi  ApoorvaW,
  If you want to setup a restricted pssession, please try to set the session configuration with the cmdlet:
  Register-PSSessionConfiguration
  Securing Session Configurations
  You can assign session configurations to users automatically. For example, you may want to restrict the commands in a session that are available to some users. This is done in a two-step-process:
  1. Create a new session configuration that restricts the session to only a subset of commands.
  2. Change security access permissions so that the intended users can only access the new session configuration.
  For more detailed information about restricted session and paremoting security, please refer to these articles:
  PowerShell Remoting: How to Restrict User Commands
  Restrict Session
  If there is anything else regarding ths issue, please feel free to pst back.
  Best Regards,
  Anna Wang