Learning Management : Learner Access not restricted by organizations

Similar Messages

• Manager hierarchy is not showing the Organization web part in my site sharepoint 2013

  Hi,
  In My Site SP2013,we added a organization web part,manager is available for users but we are unable to see the manager name in the silver light view in organization web part,we are able to see it in html view.
  can any one please let me know the problem.
  Regards,
  phani

  Hi Phani,
  check those links
  https://blog.karstein-consulting.com/2011/06/16/problem-and-workaround-organization-browser-silverlight-web-part-is-empty-on-other-site-than-mysite/
  http://social.technet.microsoft.com/wiki/contents/articles/23593.sharepoint-2013-organization-browser-web-part-does-not-render-in-html-view-for-windows-claims-users.aspx
  http://support.microsoft.com/kb/2643420
  Kind Regards,
  John Naguib
  Technical Consultant/Architect
  MCITP, MCPD, MCTS, MCT, TOGAF 9 Foundation
  Please remember to mark your question as answered if this solves your problem

• "Access not allowed for subject: principals=[]" Common Issue with no Repose

  Hi all,
  When upgrading from 8.1 to 8.1 SP4 (we have seen the issue as early as SP2), there is an exception thrown when trying to start the server where our application is deployed:
  <pre>weblogic.management.NoAccessRuntimeException: Access not allowed for subject: principals=[], on ResourceType: Application Action: write, Target: Deployed
  </pre>
  Our application creates an InitialContext using properties from a standard properties file, and when the "java.naming.security.principal" and "java.naming.security.credentials" properties are omitted, the server will start and deploy the application, but it naturally will not work.
  I have noticed that this issue has been brought up by several others:
  http://forums.bea.com/bea/search.jspa?q=%22Access+not+allowed+for+subject%3A+principals%3D%5B%5D%22&objID=&dateRange=all&userID=&numResults=15
  http://forums.bea.com/bea/thread.jspa?forumID=2058&threadID=200027601&messageID=200619947#200619947
  http://forums.bea.com/bea/thread.jspa?forumID=2051&threadID=200021662&messageID=200590642#200590642
  http://forums.bea.com/bea/message.jspa?messageID=200590569&tstart=0
  But have seen nothing resembling even a hint of a cause.
  Any suggestions that even get me going in the right direction would be appreciated.
  <pre>
  weblogic.management.NoAccessRuntimeException: Access not allowed for subject: principals=[], on ResourceType: Application Action: write, Target: Deployed
       at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.wlsRun(SecurityHelper.java:623)
       at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.run(SecurityHelper.java:510)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
       at weblogic.management.internal.SecurityHelper.isAccessAllowed(SecurityHelper.java:398)
       at weblogic.management.internal.RemoteMBeanServerImpl.private_setAttribute(RemoteMBeanServerImpl.java:430)
       at weblogic.management.internal.RemoteMBeanServerImpl.setAttribute(RemoteMBeanServerImpl.java:387)
       at weblogic.management.internal.MBeanProxy.setAttribute(MBeanProxy.java:741)
       at weblogic.management.internal.MBeanProxy.invokeForCachingStub(MBeanProxy.java:475)
       at weblogic.management.configuration.ApplicationMBean_Stub.setDeployed(ApplicationMBean_Stub.java:408)
       at weblogic.management.mbeans.custom.ApplicationManager.setState(ApplicationManager.java:593)
       at weblogic.management.mbeans.custom.ApplicationManager.startConfigManager(ApplicationManager.java:740)
       at weblogic.management.mbeans.custom.ApplicationManager.start(ApplicationManager.java:501)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at weblogic.management.internal.DynamicMBeanImpl.invokeLocally(DynamicMBeanImpl.java:754)
       at weblogic.management.internal.DynamicMBeanImpl.invoke(DynamicMBeanImpl.java:733)
       at weblogic.management.internal.ConfigurationMBeanImpl.invoke(ConfigurationMBeanImpl.java:509)
       at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1560)
       at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1528)
       at weblogic.management.internal.RemoteMBeanServerImpl.private_invoke(RemoteMBeanServerImpl.java:988)
       at weblogic.management.internal.RemoteMBeanServerImpl.invoke(RemoteMBeanServerImpl.java:946)
       at weblogic.management.internal.MBeanProxy.invoke(MBeanProxy.java:954)
       at weblogic.management.internal.MBeanProxy.invokeForCachingStub(MBeanProxy.java:481)
       at weblogic.management.configuration.ApplicationManagerMBean_Stub.start(ApplicationManagerMBean_Stub.java:677)
       at weblogic.management.Admin.startApplicationManager(Admin.java:2821)
       at weblogic.management.AdminServerAdmin.startApplicationManager(AdminServerAdmin.java:624)
       at weblogic.management.Admin.finish(Admin.java:2299)
       at weblogic.management.AdminServerAdmin.finish(AdminServerAdmin.java:458)
       at weblogic.t3.srvr.T3Srvr.resume(T3Srvr.java:971)
       at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:361)
       at weblogic.Server.main(Server.java:32)
  </pre>

  For others who have received this error, I'll post what I think has turned out to be the cause.
  Refer to
  http://e-docs.bea.com/wls/docs81/jndi/jndi.html#471919
  Which says:
  =====
  When you create a JNDI Context with a username and password, you associate a user with a thread. When the Context is created, the user is pushed onto the context stack associated with the thread. Before starting a new Context on the thread, you must close the first Context so that the first user is no longer associated with the thread. Otherwise, users are pushed down in the stack each time a new context created. This is not an efficient use of resources and may result in the incorrect user being returned by ctx.lookup() calls.
  =====
  Our application caches the Context created, and that Context is used by other objects to perform lookups. Prior to Sp2, this caused no issues when including the username and password as part of the properties passed to the InitialContext constructor.
  I presume that closing the Context after it has been used would be the proper fix for this, but right now this Context is used in too many places once it is created. I was able to combat the issue by removing the username and password properties (java.naming.security.principal & java.naming.security.credentials) from the properties file. It seems to work as expected.

• How to Limit Learner Access by Person Type

  My goal is to have a course or class for which only employees can self-enroll (contingent workers may not enroll). I am using the 11.5.10.2 EBS applications, where Learner Access can be controlled by individual learner or by position or job within an organization hierarchy. The OTA_EVENT_ASSOCIATIONS table corresponds to this structure, with columns for Job ID, Position ID, and Organization ID. Has anyone come up with a solution for defining learner access more flexibly? I found one Oracle Support note, 731227.1, where database triggers control administrative functionality within OLM, and I was wondering if triggers might also be useful for controlling who can enroll in a course (if person type is contractor, display a message, etc). I would be very interested to learn about creative solutions from the community. Thank you.

  Unfortunately, I haven't heard of a good custom solution for 11.5.10, but I know of one creative extension using Learner Groups coupled with eligibility profiles in R12 that I thought was good. I can provide you with contact info for the developer that built it at a company that I used to work for if you're interested.

• Learner Access using Org Hierarchy

  Hi
  Recently created an org hierarchy so we can utilise the self enrollment functionality for specific parts of the organisation against certain courses etc.
  However, when we have assigned the relevent learner access the class is not appearning within expected users catalogue. Is there any concurrent process or switch that anyone may be aware of that we need to invoke in order to have Oracle populate the employees against the hierarchy or has anyone else experienced a similar issue.
  Regards
  Carl

  You assume correctly.
  Obviously I can unrestrict the class and make it available to all within the catalogue, the point is to make it available to only certain parts of the organisation and make it self enrollment.
  I believe the issue is that the new org hierarchy has no employees/positions attached to it therefore applying learner access has no effect. I was hoping someone else may have experienced a similar issue and that there might be a simple step to populating the hierarchy that we have missed
  Cheers
  Carl

• Learner Access Issues

  We are currently trying to restrict learner access at the category level so that learners are unable to view particular categories within our catalog. We have set it so that learners are unable to view any courses in the category but they are still able to view the category name and open this.
  Does anyone have any ideas how we can restrict a category completely?
  Thanks,

  We are currently trying to restrict learner access at
  the category level so that learners are unable to
  view particular categories within our catalog. We
  have set it so that learners are unable to view any
  courses in the category but they are still able to
  view the category name and open this.
  Does anyone have any ideas how we can restrict a
  category completely?
  Thanks,No... a category stays visible all the time, even when there are no classes scheduled in that particular category (unfortunately).
  An offering on the contrary, will only be visible when there is a (visible) class scheduled.
  I think i read somewhere on this forum that this was on the wishlist for development.. to be able to hide categories... can anyone confirm this?

• Verizon Access Manager Download link not working

  Hi,
            Verizon Access Manager Download link not working, Following Links
  http://www.vzam.net/download/download.aspx?productid=872
  http://pcdn2-download.vzw.com/win/7.7/VZAM_7.7.1_2727b-AC30-Web.exe
  plz help to download verizon five spot access manager.
  thanks
  karthirocks

      Hi karthirocks! I'm sorry to see you're having any difficulties using these links. I've clicked on both, but had no problems getting pages to launch or in getting the application to download. If this is still a problem for you, please describe the issue you're experiencing. Also, please share the browser version you're using, and if you've enabled any security feature that prevents access to certain secure sites or services. Thanks!
  DionM_VZW
  Follow us on Twitter www.twitter.com/vzwsupport

• Self-Paced Learning - Bookmark not working in Captivate 5

  I followed the directions of adding a Table of Contents to one of my captivate projects and selecting Self-Paced Learning in order to create a bookmark but this does not work.  I have saved it as Adobe Flash 9 and Adobe Flash 10 but I am not getting the message about starting where I left off when either refreshing the browser or exiting and going back in.  What am I missing?
  Thanks for your time,
  Brenda

  All slides in the presentation are marked as continue.  I have gone
  through the first 5 slides and when I refresh the browser or exit out of
  Internet Explorer and open the project again it just starts at the
  beginning.
  Brenda
  From:   Lilybiri <[email protected]>
  To:     Brenda Dersham <[email protected]>
  Date:   01/25/2011 08:33 AM
  Subject:        Self-Paced Learning - Bookmark not
  working in Captivate 5
  Hello Brenda,
  How did you check: after uploading to a LMS?
  You have to be aware of the fact that a slide will be marked as 'viewed'
  only when the playbar has played the whole slide till the end. If you do
  pause slides with a click box, button, TEB and attach the action 'Go to
  Next slide' or something similar instead of the default action 'Continue'
  this will not happen and the slide will not be marked as completed.
  Lilybiri

• ERROR : Application not authorized to access the restricted API

  hello every body
  I m doin an application related to mmapi and i have written a programm for capturing a live audio , but when i run this programm i get an error
  "Application not authorized to access the restricted API"
  i m fed up of debuggin it , i m not able to find ne solution , n i m stuck up . If ne one of u have got the smae proble m and have got ne solution pls tell me and pls help me
  thanks

  This could come when the midlet is not signed and gets installed as untrusted application.
  Try signing the midlet using verising java object signing class 3 RSA certificate. Do not use DSA cert as it is not supported by wtk.
  Regards,
  Raja Nagendra Kumar,
  C.T.O,
  Offshore Excellence - J2ME
  www.tejasoft.com

• I have bought an iPad air. I can not access The restrictions as I have not been given a password when I purchased the iPad yesterday. Can someone advise please

  I am unable to access the restrictions in the accessibility settings due to the fact It is password protected. I have just purchased it so it is brand new out of the box and I have not set a password for it and I wasn't issued one with the iPad air.   Can someone advise please. 

  They don't come with restrictions enabled, you have to turn them on and set the passcode.
  When you do try to enter the restrictions area you are prompted to enter a passcode, but that means you're making it.
  I'd take it back to where you bought it from and have them unlock it.

• HT201304 It would be tremendously helpful to be able to access, set restrictions, and make changes from the parents device to all devices under the same iTunes account, so that I could make changes to my kids devices without physical access.

  Please help!
  It would be tremendously helpful to be able to access, set restrictions, and make changes from the parents device, to all devices under the same iTunes account, so that I could make changes to my kids devices without physical access.
  I understand that I can set up a different Apple ID for the kids devices, or take physical control of the device and make the changes myself. However, my teenage son is technically savvy enough to have a job in Silicon Valley, as are most young people these days. However, in order to access his devices the current way, I first have to bypass the four digit pass code. This starts a fight of why I need in the device and continues to escalate. The argument that I am the parent will gain access but the fight is simply exhausting, and quite frankly shouldn't have to happen at all. He is not yet an adult, he did not pay for his iPad or iPhone and I, as a parent, should have not only have the right to change options at will, and from anywhere, but look at history or current activity when I feel like it.
  I currently have the settings where app and in-app purchases require my password to be put in, and he must come to me to type it in, but I need more control and would like, and should be able to access any of our six devices and make individual changes simply by logging in to my account, with my password.
  If I can see all my devices on the "Lost My iPhone" app, this technology should be easy to make happen.
  C'mon parents! I have a pretty good kid, given all things that they can get into, but I am not stupid. For everything I see has been done, there is much more I haven't seen. I want my children to be kept safe and be able to know what they are looking at or listening to. We parents are the only ones who know our beliefs and what our kids can handle and when.
  Thanks for any support or information that I may be missing in order to fulfill my request.

  There are mobile device management solutions that can do this, including in Apple's OS X Server system, but most parents generally find that setting this up is more work than it's worth. If you're interested, though, there are a couple that at least purport to be free (I don't know if there are any hidden "gotchas"):
  http://www.unwireddevicelink.com/features/
  https://meraki.cisco.com/products/systems-manager
  and Apple's system:
  http://www.apple.com/osx/server/features/#profile-manager
  I don't think any, however, allow you to see current activity or browser history. iOS doesn't expose those to access from MDM solutions, to the best of my knowledge.
  Regards.

• User management and Access Control in HCM Cloud

  Hello,
  Information is scarce about User management and Access Control in Oracle Cloud generally. Today, I have two questions :
  - How can I bridge HCM Cloud user store with my on-premise IDM or security repository in order to allow identty governance to flow to HCM Cloud service ?
  The only information I got was that you can declare manually and by bulk import through files my users. This is not really interresting as I have an automatic IDM with workflows and identity control on provisioning and de-provisioning.
  Is there a SPML or proprietary endpoint to do it automatically ? What are the prerequisites ? Do I have to implement OIM on my side ?
  - Once my users are created, how can I do webSSO from my internal security repositories to the HCM Cloud service ?
  I do not want to distribute new set of login / passwords to my users. Is it possible to do Identity Federation (SAML 2.0 or WS-Fed) with HCM Cloud service ? What are the prerequisites ? Do I have to implement OAM on my side ?
  I accept all pieces of information you can give me on this topic to help me understand the funcitonalites, limits and options offered by Oracle Cloud and more precisely by HCM Cloud service.
  Best regards,

  OIDDAS has limited capability of access control and information hiding. Presently, the permissions and privileges can be set at a realm level, and fine grained access control / information hiding cannot be done.
  At present, the only way to restrict view and access control is by appplying ACLs (which is not the safest bet).

• "Access not allowed?"

  I set up my wifi, and when I go to the browser, I can go to Google and other websites correctly. When I tried to download app world, I got the message "Access not allowed". When I pressed the return key, it said my download was successful, but app world is not downloaded on my phone.
  My brother and sister have the same phone, and they were able to download app world with no problems.
  Anyone know how to fix this?

  I didn't mean to steal your thunders. LOL :-D No worries there friend. Hey... I at least got a helpful... whatever that amounts to in these new forums how is the bike riding, have you learn to breath yet?Haven't actually gotten to do any riding yet. So far I've been clearing my mind the old fashioned way. I've been "footing it" everywhere. Still does the same job though. Allows me a chance to clear my mind and get some exercise at the same time.
  The only reason I haven't been riding yet is my bike still needs some more TLC before it'll allow me a ride without stranding me somewhere. Guess that's what I get for leaving it outside in Florida for 3 years. Plan on looking at it some more tomorrow and I should have it fixed then so I can get to riding! I've so been looking forward to getting back into it!!!
  There is something really odd with ASI definitely agree.
  You've got the right idea about how to handle the inconsistencies though. Treat it as though it's a three year old and hold its hand all the way through every little step!
  Good to hear from you, hope all is going well in your part of the world! I'm slowly getting my self back and it's such a strange, but good, feeling!

• Java.sql.SQLException: Cannot obtain connection after 3600 seconds. , Exception = Access not allowed

  Using Weblogic Platform 7.0 (installed from platform700_win32.exe),
  Running a BPM Doamin(WLIDomain with BPM only).
  When I try to access my entity bean(CMP), the following exception is getting thrown.
  I have seen a similar post in here, but the answer to that post, which says to
  provide ACL. does not apply quite well my scenario.
  To do this, I right clicked on the connection pool and selected define Ploicy..
  It shows two options
  RealmAdapterAuthorizer and DefaultAuthorizer; On DefaultAuthroizer i specified
  role accessing the resource would be "everyone". - restarted the server - but
  still the same error.
  Please suggest a solution if any. Do i have to get some service pack for this?
  TIA
  Ranjith.

  We have never seen a case yet where this was not a permissions problem.
  Do you have a fileRealm.properties file as part of your configuration?
  "Ranjith" <[email protected]> wrote in message
  news:3f0fdeb3$[email protected]..
  >
  java.sql.SQLException: Cannot obtain connection after 3600 seconds. ,Exception
  = Access not allowed
  java.sql.SQLException: Cannot obtain connection after 3600 seconds. ,Exception
  = Access not allowed
  atweblogic.jdbc.jts.Connection.wrapAndThrowSQLException(Connection.java:701)
  atweblogic.jdbc.jts.Connection.getOrCreateConnection(Connection.java:623)
  atweblogic.jdbc.jts.Connection.prepareStatement(Connection.java:133)
  atweblogic.jdbc.rmi.internal.ConnectionImpl.prepareStatement(ConnectionImpl.ja
  va:139)
  atweblogic.jdbc.rmi.SerialConnection.prepareStatement(SerialConnection.java:81
  atservice.samplemgt.v1_0.ejb.entity.BanksampletypeCMP_ckv0ao__WebLogic_CMP_RDB
  MS.ej
  bFindAll(BanksampletypeCMP_ckv0ao__WebLogic_CMP_RDBMS.java:873)
  at java.lang.reflect.Method.invoke(Native Method)
  atweblogic.ejb20.cmp.rdbms.RDBMSPersistenceManager.collectionFinder(RDBMSPersi
  stenceManager
  java:300)
  atweblogic.ejb20.manager.BaseEntityManager.collectionFinder(BaseEntityManager.
  java:715)
  atweblogic.ejb20.manager.BaseEntityManager.collectionFinder(BaseEntityManager.
  java:688)
  atweblogic.ejb20.internal.EntityEJBLocalHome.finder(EntityEJBLocalHome.java:47
  6)
  at ...

• Weblogic 7.0, Oracle9i - "Access not allowed" error

  All:
  I am looking for any suggestions/help/advice/etc on my problem. The background is this, I have an application that uses 3 MDBs, 3 Entity Beans, is deployed on Weblogic7.0 (the latest), and needs to query an Oracle9i database.
  I have set up my drivers and URL, they work fine under a normal java class making a connection. They also return "success" when using dbping to test the connection, so the set up is right.
  When Weblogic starts, the connection pool is made, the DataSource is fine -- but when the EJB is deployed it comes back with the SQLException "Access not allowed".
  I've put the classes12.zip file at the beginning of the classpath, modified the setenv.cmd file so the PATH includes %ORACLE_HOME%\bin and %WL_HOME%\bin\oci920_8.
  I've also put in the following in the weblogic-ejb-jar file:
  <security-permission>
  <description>Oracle</description>
  <security-permission-spec>
  grant {
  permission java.lang.RuntimePermission "loadLibrary.ocijdbc9";
  </security-permission-spec>
  </security-permission>
  I've even tried to do what the Security Manager portion of the Weblogic documentation says to do. It said to "activate the security manager" by putting the following line in the startWeblogic file:
  -Djava.security.manager
  None of these have worked -- I keep getting that error. Like I said previously I have tried the connections and they have worked through other methods.
  I've tried everything, including using an XA driver -- to no avail. My forehead is getting really sore from banging it on the monitor --- can you help???? :/
  Thanks!
  The connection pool information follows (from the config.xml file):
  <JDBCConnectionPool CapacityIncrement="1"
  DriverName="oracle.jdbc.driver.OracleDriver" InitialCapacity="1"
  LoginDelaySeconds="1" MaxCapacity="36" Name="P3IConnectionPool"
  Properties="user=EI_SERVICES;password=EI_SERVICES;dll=ocijdbc9;protocol=thin"
  RefreshMinutes="0" Targets="beaserver"
  TestConnectionsOnReserve="true" TestTableName="STATE_LKUP" URL="jdbc:oracle:thin:@192.168.23.45:1521:ORASUN"/>

  Just in case anyone needs this in the future....
  After creating the connection pool in Weblogic 7.0 (using the Weblogic console) right click on the connection pool and select "Define Policy", select "Default Authorizer", then enter "Caller is a member of the group everyone" and apply.
  That takes care of the problem... didn't happen in Weblogic 6.1