LDAP - deleted user display

Hi,
In portal when I search for a user it is displaying two users for given ID. But In LDAP, one user have the status deleted. How can it is displaying two users for a single id, as of my knowled LDAP shd take unique ids.
Help me to resolve this ..
Thanks in advance
cheers

Which LDAP product? How can it show deleted users? If it is just an attribute of a user, then the UME won't know to ignore it.

Similar Messages

URGENT! I need help on LDAP - Finding deleted users Attribute "sAMAccount"

Hi,
I am trying to get deleted users from Active Directory after a certain interval. Every time only the differences in the result will be shown. Also I need to get the value of the specific attribute called "sAMAccount" every time for each user(in the result).
I am using polling here.
*if (localCookie == null) {*
                    // Specify the DirSync Control
                    *Control[] ctls = new Control[] { new DirSyncControl() };*
                    ctx.setRequestControls(ctls);
               *} else {*
                    // Specify the DirSync Control with cookie
                    *Control[] ctls = { new DirSyncControl(1, Integer.MAX_VALUE, localCookie, true) };*
                    ctx.setRequestControls(ctls);
rspCtls = ctx.getResponseControls();
*if (rspCtls != null) {*
               *for (int i = 0; i < rspCtls.length; i++) {*
                    *if (rspCtls[i] instanceof DirSyncResponseControl) {*
                         *DirSyncResponseControl rspCtl = (DirSyncResponseControl) rspCtls;*
                         localCookie = rspCtl.getCookie();
The typical problem I am facing here is 2nd iteration onwards the result is not fetching the attribute "sAMAccount".
Please suggest the possible reason and solution.

String searchBase = "DC=test,DC=com";
String searchString = "(&(objectClass=user)(|(givenName=*)(isDeleted=TRUE)))";
String url = "ldap://jbaitest.test.com:389";
String initCntxtFact = "com.sun.jndi.ldap.LdapCtxFactory";
String login= "CN=Administrator,CN=Users,DC=TEST,DC=COM";
String passwd = "welcome@1";
byte[] localCookie = AdPolling.getCookie();
try {
    Hashtable<String, String> env = new Hashtable<String, String>();
    env.put(Context.INITIAL_CONTEXT_FACTORY, initCntxtFact);
    env.put(Context.SECURITY_AUTHENTICATION, AdConstant.SECURITY_AUTH_TYPE_SIMPLE);
    env.put(Context.SECURITY_PRINCIPAL, login);
    env.put(Context.SECURITY_CREDENTIALS, passwd);
    env.put(Context.PROVIDER_URL, url);
    LdapContext ctx = new InitialLdapContext(env, null);
    SearchControls searchCtls = new SearchControls();
    String returnedAtts[] = null;
    searchCtls.setReturningAttributes(returnedAtts);
    searchCtls.setReturningObjFlag(true);
    searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
    if (localCookie == null) {
        Control[] ctls = new Control[] { new DirSyncControl() };
        ctx.setRequestControls(ctls);
    } else {
     // Specify the DirSync Control with cookie
     Control[] ctls = { new DirSyncControl(1, Integer.MAX_VALUE, localCookie, true) };
     ctx.setRequestControls(ctls);
    NamingEnumeration enumSearchResult = ctx.search(searchBase, searchString, searchCtls);
    AdRestClientConnector adRestCon = populateUsers(enumSearchResult); // Method to get the different attribute values
    rspCtls = ctx.getResponseControls();
    if (rspCtls != null) {
     for (int i = 0; i < rspCtls.length; i++) {
         if (rspCtls[i] instanceof DirSyncResponseControl) {
          DirSyncResponseControl rspCtl = (DirSyncResponseControl) rspCtls;
          localCookie = rspCtl.getCookie();
AdPolling.setCookie(localCookie);
} catch (NamingException e) {
     log.error(AdConstant.ERROR_SEARCHING_DIR_PROBLEM + e);
} catch (Exception e) {
     log.error(AdConstant.ERROR_SEARCHING_DIR_PROBLEM + e);

LDAP Groups not displaying correctly in EP User Administration

I am having difficulty configuring EP to pull my Active Directory groups correctly. Currently, it is pulling a list of objects that have an objectClass of 'organizationalUnit', instead of 'group' which is how it is set-up inn Active Directory. I have tried setting the objectClass = group in the direct editing of the UM Configuration, but that does not seem to matter. Each time I change the configuration, I am re-starting the J2EE engine.
Any suggestions would be greatly appreciated
ume.acl.validate_cached_acls=FALSE
ume.admin.account_privacy=FALSE
ume.admin.addattrs=
ume.admin.allow_selfmanagement=TRUE
ume.admin.auto_password=TRUE
ume.admin.create.redirect=
ume.admin.debug_internal=FALSE
ume.admin.display.redirect=
ume.admin.modify.redirect=
ume.admin.nocache=FALSE
ume.admin.password.migration=false
ume.admin.phone_check=TRUE
ume.admin.search_maxhits=1000
ume.admin.search_maxhits_warninglevel=200
ume.admin.self.addattrs=
ume.admin.selfreg_company=FALSE
ume.admin.selfreg_guest=TRUE
ume.admin.selfreg_sus=FALSE
ume.admin.selfreg_sus.adapterid=SUS
ume.admin.selfreg_sus.adminrole=
ume.admin.selfreg_sus.deletecall=TRUE
ume.allow_nested_groups=TRUE
ume.allow_nested_roles=FALSE
ume.authenticationFactory=com.sap.security.core.logon.imp.SAPJ2EEAuthenticator
ume.cache.acl.default_caching_time=1800
ume.cache.acl.initial_cache_size=10000
ume.cache.acl.permissions.default_caching_time=3600
ume.cache.acl.permissions.initial_cache_size=100
ume.cache.default_cache=distributableCache
ume.cache.group.default_caching_time=3600
ume.cache.group.initial_cache_size=500
ume.cache.notification_time=0
ume.cache.principal.default_caching_time=3600
ume.cache.principal.initial_cache_size=500
ume.cache.role.default_caching_time=3600
ume.cache.role.initial_cache_size=500
ume.cache.user.default_caching_time=3600
ume.cache.user.initial_cache_size=500
ume.cache.user_account.default_caching_time=3600
ume.cache.user_account.initial_cache_size=500
ume.company_groups.description_template=Company
ume.company_groups.displayname_template= ()
ume.company_groups.enabled=FALSE
ume.company_groups.guestusercompany_enabled=TRUE
ume.company_groups.guestusercompany_name=Guest Users
ume.db.connection_pool.j2ee.is_unicode=FALSE
ume.db.connection_pool.j2ee.jta_transaction_support_enabled=FALSE
ume.db.connection_pool.j2ee.xatransactions_used=FALSE
ume.db.connection_pool_type=SAP/BC_UME
ume.db.or_search.max_arguments=50
ume.db.parent_search.max_arguments=300
ume.db.use_default_transaction_isolation=FALSE
ume.ldap.access.action_retrial=2
ume.ldap.access.auxiliary_naming_attribute.grup=
ume.ldap.access.auxiliary_naming_attribute.uacc=
ume.ldap.access.auxiliary_naming_attribute.user=
ume.ldap.access.auxiliary_objectclass.grup=
ume.ldap.access.auxiliary_objectclass.uacc=
ume.ldap.access.auxiliary_objectclass.user=
ume.ldap.access.base_path.grup=DC\=left,DC\=sand
ume.ldap.access.base_path.uacc=
ume.ldap.access.base_path.user=DC\=sand
ume.ldap.access.context_factory=com.sun.jndi.ldap.LdapCtxFactory
ume.ldap.access.creation_path.grup=
ume.ldap.access.creation_path.uacc=
ume.ldap.access.creation_path.user=
ume.ldap.access.dynamic_group_attribute=
ume.ldap.access.dynamic_groups=FALSE
ume.ldap.access.flat_group_hierachy=MIXED
ume.ldap.access.msads.control_attribute=userAccountControl
ume.ldap.access.msads.control_value=512
ume.ldap.access.msads.grouptype.attribute=grouptype
ume.ldap.access.msads.grouptype.value=4
ume.ldap.access.multidomain.enabled=FALSE
ume.ldap.access.naming_attribute.grup=ou
ume.ldap.access.naming_attribute.uacc=
ume.ldap.access.naming_attribute.user=
ume.ldap.access.objectclass.grup=group
ume.ldap.access.objectclass.uacc=
ume.ldap.access.objectclass.user=
ume.ldap.access.server_name=myserver
ume.ldap.access.server_port=3232
ume.ldap.access.server_type=
ume.ldap.access.size_limit=0
ume.ldap.access.ssl=FALSE
ume.ldap.access.ssl_socket_factory=com.sap.security.core.server.https.SecureConnectionFactory
ume.ldap.access.time_limit=0
ume.ldap.access.user=domain
svc_user
ume.ldap.access.user_as_account=TRUE
ume.ldap.blocked_accounts=Administrator,Guest
ume.ldap.blocked_groups=Administrators,Guests
ume.ldap.blocked_users=Administrator,Guest
ume.ldap.cache_lifetime=300
ume.ldap.cache_size=100
ume.ldap.connection_pool.connect_timeout=0
ume.ldap.connection_pool.max_connection_usage_time_check_interval=120000
ume.ldap.connection_pool.max_idle_connections=5
ume.ldap.connection_pool.max_idle_time=300000
ume.ldap.connection_pool.max_size=10
ume.ldap.connection_pool.max_wait_time=60000
ume.ldap.connection_pool.min_size=1
ume.ldap.connection_pool.monitor_level=0
ume.ldap.connection_pool.retrial=5
ume.ldap.connection_pool.retrial_interval=10000
ume.ldap.default_group_member=cn\=DUMMY_MEMBER_FOR_UME
ume.ldap.default_group_member.enabled=FALSE
ume.ldap.record_access=FALSE
ume.ldap.unique_grup_attribute=
ume.ldap.unique_uacc_attribute=samaccountname
ume.ldap.unique_user_attribute=samaccountname
ume.persistence.batch.page_size=25
ume.persistence.data_source_configuration=dataSourceConfiguration_ads_deep_readonly_db.xml
ume.persistence.pcd_roles_data_source_configuration=dataSourceConfiguration_PCDRoles.xml
ume.persistence.ume_roles_data_source_configuration=dataSourceConfiguration_UMERoles.xml
ume.principal.cache_group_hierarchy=TRUE
ume.principal.cache_indirect_parents=TRUE
ume.principal.cache_role_hierarchy=TRUE

Hi Doug,
I request your help on this. I am faced with a similar issue.
In my WinAD system, one user can be stored in multiple groups. However, the tree-structure is also present in my Windows AD hierarchy. Hence I am either using a Flat hierarchy or a Mixed hierarchy.
Changing the Datasource Configuration file to a Flat Readonly didn't solve the issue. The AD group path mentioned is correct and hence the group is visible in EP. However, I am not sure what should the UserPath be (As for now, I have kept it the same as the Group path).
Request you to please let me know what should the userpath be.
Rgds,
Sree

Remove or Delete monitor display preferences as defined by the User -

The clarity and resolution of my display seems to have disappeared. It is currently set at 1440 x 900 which is usually fine except when I start-up, my screen loads what must initially be the default settings - which are perfect - then after a couple of seconds changes to a dark/grainy image.
When I log in to another user account, the image is fine which indicates that it is must be display preferences for the user which has changed (although I don't recall ever doing this). Does anyone know how to reset defaults or remove delete user defined profile?
Thank you.

DearJane
As Limnos points out my suggestion takes a rather blanket approach which may not suit you? However it's also fair to say that problems potentially caused due to damaged and/or corrupted .plists are not exclusive to a single .plist. Occasionally its a combination of 2, 3 or 4 or possibly more that causes the problem.
Hence my suggestion to create a folder on the desktop first. That way if the problem goes away you can introduce desired .plist files later on once you test everything else. It's also my experience that most mac users can benefit from having a major clearout. Couple this with clearing out the contents of /Users/Home/Library/Caches and overall performance can seem quite marked.
A lot does depend on how many 3rd-Party applications/utilities you've added. I have lots of added extras and it does not cause me any problems whenever I clear them all out.
The choice is yours.
HTH?
Tony

Question on LDAP integration & user deletion

In the "Administration Console Help" Document it states:
"You cannot invite user accounts that are mastered in an LDAP-based user directory; these accounts are created automatically when you synchronize the LDAP directory."
Does this mean that after configuring a LDAP Realm, the users specified by the filter should be automatically pulled into OnTrack? I do not see ldap users when executing a blank search from the admin console. At this point, I also cannot log into OnTrack using a valid LDAP user. I was trying to see if OnTrack worked similar to UCM where the OnTrack user acct would be created once the user logs into the application.
What I can do is go to "Create User" and enter the email address for a valid ldap user. then I see that user in the full search. that user can also log in successfully.
I wanted to know what the expected behavior was: is there expected to be a required 'registry' of ldap users into ontrack before they can auth into the app? Is there some sync process that needs to be run to pull in the ldap users?
Also, is there any current best practice of user deletion? I see in the admin console that there is a note that states: "Note: User deletion is not supported."
As always, thanks for the info!
Thanks,
-ryan
Ryan Sullivan | ECMconsultant
http://www.ecmconsultant.net/

Ryan,
It sounds like you figured this out.
There is NOT an explicit sync of users from LDAP into On Track. The On Track user object is created when the LDAP user first logs in (or when added to a Conversation by another user). After that point, the user will be visible in the admin console. (Note, however, that from the client, you can search for an LDAP user and add them to a Conversation's membership even if that user has not yet logged in to On Track. It does this by searching for the user in the LDAP directory, as well as in On Track's known users. This is a great way to "invite" other people in the organization to participate in On Track.
As for your other questions:
- The recommended way to "delete" a user is to mark the user "Disabled" in On Track. This will prevent that user from logging in and from showing up as a valid user in the client.
- Once a user "[email protected]" exists, it should not be possible to create another "[email protected]" user, even if the first one is disabled, and regardless of which realm those users are in.
--Dan

IView for displaying the locked user / deleted user etc

Hi Experts,
There is one log file in server. This log file name is as below:
some_name.<some_number>.log
The file contains information in following way:
Userxyz deleted user abc1
Userxyz created user abc2
I want to create one iView based on above log file.
Please suggest me how to go about it. I may have to filter the records. The log file may have 1000s of records. I would like to display only records based on certain filter condition. For example the iview should only display the deleted user.
Please also let me know if I have to use any KM iView for this purpose.
Regards,
Gary

Hi Simon,
Thanks. My challenge is like this -
First Issue - In server there will be multiple files which may contain the information. How my program should select the latest file from the list
some_name.<some_number>.log
some_name.<some_other_number>.log
some_name.<some_other_number>.log
for example
xyz_1.log
xyz_2.log
xyz_3.log
Second Issue - How Java IO methods works?
I won't go for KM usage.
Regards,
Gaurav

Rename users display name from LDAP

my OBIEE 10.1.3.4 does user authentication from LDAP on our domain Active Directory..
a users display name was mis-spelled in Active Directory.. I corrected the mis-spelling.. but BI still shows it wrong..
when the user is created is the display name then stored in an ATR file or somewhere in the catalog..
were do I go to change it.. or how do I get it to update from Active Directory again..

If the display name is really bothering the user, then you can do a work around like letting users to set their own display name by enabling the enable any user to set the value of the variable option for the DISPLAYNAME variable in the LDAP init block and calling it in the front end using NQSSetSessionValue().
Hope this helps.
Regards,
-Amith.

SharePoint 2010 Web Analytics showing user Display Name and Account Name from the same user

Hi!
Since July, 16th 2012 the Web Analytics Daily Unique Visitors reports started to show almost the double of visitors we used to have on our Web Application. Here are some of the data (I intentionally deleted the weekend data):
10/7/2012 2.497
11/7/2012 2.723
12/7/2012 2.722
13/7/2012 2.699
16/7/2012 5.055
17/7/2012 4.963
18/7/2012 4.954
19/7/2012 4.998
20/7/2012 4.965
23/7/2012 5.117
24/7/2012 5.012
25/7/2012 5.071
As you may notice the data jumped from around 2.700 unique visitors to around 5.000 unique visitors. As the number of permissioned users remains constant it is pretty odd. I also checked the Number of Page Views report and see no change on its behavior.
The number of page views remained constant.
So I went to look the Top Visitors report and understand why the visitors number almost doubled. The analytics started to count the users Display Name and Account name as two different visitors with a different number of page views. Let me show you an example
from yesterday (July, 25th) Top Visitors report:
#    Visitor                  Page Views   %
1   Cinthia XXXXXXXXXX    359      0,55%
5   Giselle XXXXXXXXXX     143        0,22%
7    Aline XXXXXXXXXX       138        0,21%
15 nt\cmazevedo              111        0,17%
60 nt\gbsantana                 69        0,11%
73 nt\aglsiqueira                 65      0,10%
"Cinthia" and the account "nt\cmazevedo" are the same person. The same is applied to "Giselle" / "nt\gbsantana" and "Aline" / "nt\aglsiqueira".
As I stated this is an example from July, 25th. If I checked the same report from a period before July, 16th I can only see the users Display Name as "Visitors". No account name is displayed or counted as a different visitor.
About the environment:
We have two SharePoint 2010 farms: a "corporate" and a "enterprise". The corporate farm contains four web servers and a central administration servers with publishing services. The enterprise farm contains two servers running User Profile Services, Search
Services and some others. Our main version is the SP1 with June/2011 Cumulative Update with a few more hotfixes applied.
This behavior on analytics is affecting all web applications (we have more than 20) installed on this farm and my company Support team said that no change were made on SharePoint on the weekend the problem started.
Does anyone have any tip about what is going on?
Thanks in advance!

Hi, Manas!
First of all thanks for your interest on this issue but I don't think it is related to the User Profile or the Active Directory.
I checked both records and there was no change on the Display Names. All the users have "full names" as display names (first + middle + last name) and not logins as SharePoint is displaying on this report.
But I did a test yesterday and checked the results today confirming that just the access been made using a specific server are causing this. Explaining it better:
I have four web servers on my farm named from P01 to P04. Then I created this test script:
Step 1: Change local HOSTS file to point the web application on the server P01.
Step 2: Access site "A"
Step 3: Access site "B"
Step 4: Close the browser.
Step 1: Change local HOSTS file to point the web application on the server P02.
Step 2: Access site "C"
Step 3: Access site "D"
Step 4: Close the browser.
Step 1: Change local HOSTS file to point the web application on the server P03.
Step 2: Access site "E"
Step 3: Access site "F"
Step 4: Close the browser.
Step 1: Change local HOSTS file to point the web application on the server P04.
Step 2: Access site "G"
Step 3: Access site "H"
Step 4: Close the browser.
I asked three users to execute that script. The results: All access to the sites "C" and "D" were registered on Web Analytics with the user account name such as "nt\cmazevedo". All the other sites registered the user Display Name correctly such as "Cinthia
XXXXXXXXXX".
With this test we could isolate the problem just on the server P02. It doesn't occur on the others. Now my support team is trying to find any configuration difference between this server and the other three that could point for the root cause.
I am also looking for some information regarding the service responsible for this task ("transform the account name into a display name") to understand why it doesn't work on one server and works on the others.
Thanks!

Cannot remove deleted user from people picker - SharePoint Foundation 2010

So I think I've read all the people picker articles here and I can't find a solution so I thought I'd start a new thread. Here is the issue:
A user was deleted from Active Directory and removed from SharePoint Foundation 2010. The user was still showing in the People Picker within the site collection, so we have performed a few things to try and get rid of this user.
User is deleted from AD
User is deleted from SharePoint Site Collection
Have tried stsadm -o deleteuser
Have removed all mention of this user from UserInfo table
User does NOT show in
https://<SiteCollectionURL/_layouts/people.aspx?MembershipGroupId=0
Cannot find any mention of this user anywhere.
Ran a full crawl as we read on a forum somewhere that it might help.
If I try and add the user back to SharePoint I get "The user does not exist or is not unique"
If I try "stsadm -o deleteuser -userlogin DOMAIN\USER -url https://<sitecollectionurl>" I get "The user does not exist or is not unique"
I am not sure what else I can try now. Can anyone help?
Thanks,
Vinny
Vinny

No other domain trusts that this user could be in.
Just so everyone can stop with the warnings, we do NOT regularly delete users from the UserInfo table and fully are aware of the problems behind it, which is why it is so rarely done. But at times, you have to do what you have to do to help a customer, you
know? This one user is the only one that was removed from the UserInfo table, but there are a few other users that are also deleted (from SharePoint, not manually from UserInfo) that are still showing as well. This one user included.
There MUST be another place that the people picker gets it's information from. ALL of the user's old information still shows in the people picker (username, email address, display name), and yet none of that information exists anywhere other than in the
People Picker. Mailbox is gone from Exchange, User deleted from SharePoint, User deleted from Active Directory. Is there no cache someone could point me towards that People Picker might store information in.
Vinny

Steps for re-using the same user id of a deleted user in OIM 11g ?

Hello experts,
By Default, in OIM 11.1.1.5.0 it is not allowing to re-use the same user id of a deleted user.
Consider a user with user id as "ABCD1234". The user is deleted from OIM and it is not getting displayed in the user search. But in DB we could see that user details with "Deleted" status. Say accidently this hard delete has happened .
How do we create that user again with same user id ?
What is recommended for such scenario ?
Thanks,
DK

I suggest disable the unique index instead of dropping it using ALTER INDEX <INDEX_NAME> DISABLE command.
Better way to handle this do below
1. disable index
2. update usr_login for deleted user using sql query eg. xx|usr_login and commit it ( update usr set usr_login='xx'|| usr_login where upper(usr_status)='DELETED')
3. enable your index
4. now login to OIM and easily you can create user with the previous user login
In this case your Index is still enbaled so it won't hamper the performancem, because this index is being used in various places for user search.
NOTE: disable any other constraints if required. But, I don't think so. Just disabling unique index will allow you to update"
--nayan

Delete user's groups from OID

Hello,
I did have a problem when I did delete user from OIM, this user didn't get deleted from OID. I solved this by adding this to the undo task for Create User in OID User PD. However, one additional problem remains - users group memberships doesn't get removed when user is deleted from OIM. From the log file I can see:
DEBUG,19 Jun 2009 13:10:01,405,[XL_INTG.OID],OID:tcUtilLDAPOperations -> Parameter Variables passed are: pSearchBase = [cn=external,cn=users,dc=def,dc=star,dc=co,dc=us], pFilterExpression = [cn=cn=GROUPNAME,cn=XX,cn=Groups], pIsRelative = [false], pAttrNames = [null]
DEBUG,19 Jun 2009 13:10:01,408,[XL_INTG.OID],tcUtilOIDUserOperations -> Returning with code:USER_DOESNOT_EXIST
I think the problem is with pSearchBase -field values. Groups are not located in that LDAP-path and that's why it's returning USER_DOESNOT_EXIST. How I can tell to OIM where to look?
Thanks!
Or, maybe the problem is with "cn=cn=GROUPNAME". If so, where that extra "cn=" is coming from...?
Edited by: Jakru on Jun 19, 2009 1:52 PM

EDIT: didn't realize this was for CR.. my post was for boe.
Hey Bernard,
Here's what I do:
select SI_NAME, SI_USERGROUPS from CI_SYSTEMOBJECTS where SI_NAME = 'xyz' and SI_PROGID = 'CrystalEnterprise.User'
This will bring back the group ID's that user xyz is a member of. The groups are in a nested property of SI_USERGROUPS, which I don't think you can query directly. Once you have the ID's, however, you can run another query to find out what the group names are. Say the first query brought back three results, 123, 456 and 789. Then you'd run:
select SI_NAME from CI_SYSTEMOBJECTS where SI_ID = '123' or SI_ID = '456' or SI_ID = '789'
Perhaps you could write some logic to parse the group ID's out of the first query and put them into the second query's where clause.
HTH,
Murray
Edited by: Murray Hachey on Jul 18, 2008 3:17 PM

How to delete users in PRD

hi friends,
In my production server , we want to create new user's with copy of existing users.After that we are planing to delete those user as per user Licenses.
Please suggest me how to proceed this in my PRD server.
Its an urgent requirement.
Tanks in Advance.

Hi,
first you have to do some checks.
1. check if users are used in jobs
Goto transaction se16. enter table TBTCP.
Chose "Settings" -> "Fields for Selection".
Mark the checkbox on field AUTCKNAM.
Press Button "Multible selection" (button next to the selection fields)
Enter the useres you want to delete
2. check if users are used in RFC-destinations
Goto transaction se16. enter table RFCDES.
Enter 9999 in field "Width of Output List"
Enter 9999 in field "Maximum No. of Hits"
In the list you can search for the users.
3. check if users are used in interfaces
For examplu are there users that login to the system by external programs.
You can check this with transaction SM59. RFC-> "Display Trace". Search the list for the users you want to delete.
4. copy users with transaction SU01
If you have a lot of users, program a batchinput or use eCATT.
5. delete users with transaction SU10
select all users you want to delete and press delete
ready
Best regards
Willi Eimler

Problem deleting users with delegated admin

Hello,
I seem to be having a problem deleting users with delegated administrator. I am using JES 2005Q4.
Here is what I do:
I set Inetuserstatus and mailuserstatus to deleted. Then run msuserpurge to delete the mail box. This seems to be working fine. Then I do a commadmin domain purge and it will actually delete the persons ldap record, but it does not delete the o=pab records or the o=PIserverDB records.
I am probably missing a step here, and would apprecidate it somebody could point me in the right direction.
Thanks,
Gary

DA patches:
119777-10 most current release for Solaris
119778 for X86
119779 for Linux
118540-23 Communication Express Solaris Sparc
118541 X86
118542 Linux
118207-42 Messaging core Solaris sparc
118208 X86
118209 Linux
116574-02 Veritas Vcsha (sparc only)
118242-03 and 118245-03 Dssetup sparc
118243 and 118246 X86
118247 Linux
122018-02 Outlook Connector
(all the currently released patches. Most have t-patches available from tech support post the above numbers)

Error U9KP7Q94 when logged in with the deleted user after its recreation...

Hi All,
How to get default screen for the deleted user when we recreate the same user with same name?
i have deleted the user for ex. 'XYZ' (from the catalog user group managemet) and when again i am trying to browse the obiee with the same user i.e. XYZ (after passing the authentication using some LDAP) then i am getting the error like 'Error U9KP7Q94'.
can anyone help me in this..
thanks
Edited by: user10946827 on Apr 26, 2009 4:32 AM

I don't really see your problem. Do you have any error message ?
You may have may be a security problem.
Have you see in the catalog manager if you have the right / grant for the user on the report.
You can log as administrator / go to the catalog manager / shared folder / catalog root / users /
- on your user / in the items properties, set the owner ship to the administrator
- go to the security icon of the directory user
- give the access to the administrator
and then you have access to the directory
To see the grant of each file, you must do the same manipulation (become the owner, change the security, ...)
Success
Nico

Getting error for opening shopping cart after deleting user fron org struct

Hi Experts
I am getting dump user attribute not maintained after deleting user assignment from org structure.
what can i do to retain old status. or atleas wants to avoid getting this dump ..while displaying this SC.
pl provide any solution
Regards
Nilesh,

It is never a good idea to just delete a user assignment. What I find is that people just go on deleting assignments without considering the consequences. And later on it gives a lot of trouble to correct errors.
So never delete an assignment, but give it an end date (it's there for a reason!).
On to your problem: as said by someone else, get the user/business partner back into the organisational model (doesn't matter where actually) and there won't be an error. Try first with ppoma_bbp, if that doesn't work use pp01 - use pp01 with care and know exactly what you want to achieve else you'll end up creating a bigger mess than you started with.
If you have deleted the business partner completely you will have to update the database by hand hacking tables (a big reason never to delete a bp you are not entirely sure about).
Regards,
Robin

LDAP - deleted user display

Similar Messages

Maybe you are looking for