List all users whos password has expired
Hi,
Is it possible to list all users whos password has expired in the R\3 system?
Thanks in advance,
Aviad
You can use program RSUSR200.
On selection screen in block 'Selection by status of the password' select only 'Users with inactive passwords' checkbox.
Similar Messages
-
How can I list all users who have access to a particular TABLE or VIEW
Hi,
Can someone tell me how I can list all users who have access to a particular TABLE or VIEW.
AbhishekHi,
Take a look on this link: http://www.petefinnigan.com/tools.htm
Cheers -
How to determine users whose password has expired?
Hi.
Is there a programatic method of determing which users have expired passwords and/or have been locked out?
Thanks.
IanIan,
you need to check pwdaccountlocktime for locked users.
following a pl/sql code snippet that should give you a hint how to do that pwd expiration.
regards,
--Olaf
-- returns users expected expiration date
-- using pwdchangedtime (users) + pwdmaxage (from password policy)
FUNCTION get_pwd_expiration_date(p_userid IN VARCHAR2)
RETURN VARCHAR2
IS
l_expiration_date VARCHAR2(10);
l_user_dn VARCHAR2(256);
BEGIN
SELECT 'cn='||p_userid||MAX(DECODE(gf_name,'LDAP_BASE',
decode(substr(gf_value,1,1),',',gf_value,','||gf_value),null))
INTO l_user_dn
FROM gr_application_parameters;
l_expiration_date := to_char(to_date(substr(get_attribute(p_userid,
'pwdchangedtime'),1,14),'RRRRMMDDHH24MISS')+get_pwdmaxage_days,'MM/DD/RRRR');
RETURN l_expiration_date;
END;
-- returns pwdmaxage in days from ldap
FUNCTION get_pwdmaxage_days
RETURN NUMBER
IS
l_pwdmaxage_days NUMBER;
ldapbase VARCHAR2(256);
l_dn VARCHAR2(256);
retval PLS_INTEGER;
BEGIN
SELECT MAX(DECODE(gf_name,'LDAP_BASE',decode(substr(gf_value,1,1),',',
gf_value,','||gf_value),null))
INTO ldapbase
FROM gr_application_parameters;
l_dn := substr(ldapbase,instr(ldapbase,',',2));
l_pwdmaxage_days := to_number(get_attribute(my_global_session,
'cn=PwdPolicyEntry,cn=Common,cn=Products,cn=OracleContext'||l_dn,'pwdmaxage'))/24/60/60;
BEGIN
retval := DBMS_LDAP.unbind_s(my_global_session);
EXCEPTION when others THEN
null;
END;
RETURN l_pwdmaxage_days;
END;
FUNCTION get_attribute(p_session IN DBMS_LDAP.session,
search_base IN VARCHAR2,
p_attr IN VARCHAR2)
RETURN VARCHAR2
IS
my_session DBMS_LDAP.SESSION;
my_message DBMS_LDAP.message;
my_entry DBMS_LDAP.MESSAGE;
attrs DBMS_LDAP.STRING_COLLECTION;
my_retvals DBMS_LDAP.STRING_COLLECTION;
action NUMBER;
retval PLS_INTEGER;
entry_index PLS_INTEGER;
attr_value varchar2(2048);
BEGIN
IF p_session is null THEN
ldap_utl.get_ldap_session(my_session);
ELSE
my_session := p_session;
END IF;
attrs(1) := p_attr;
retval := DBMS_LDAP.search_s(my_session,
search_base,
DBMS_LDAP.SCOPE_SUBTREE,
'objectclass=*',
attrs,
0,
my_message);
my_entry := DBMS_LDAP.first_entry(my_session, my_message);
entry_index := 1;
--print('Got my_entry. Check to see if its null now');
WHILE my_entry IS NOT NULL
LOOP
--print('my_entry is not null');
my_retvals := DBMS_LDAP.get_values (my_session, my_entry, p_attr);
IF (my_retvals.COUNT = 1) THEN
attr_value := nvl(my_retvals(my_retvals.FIRST),'NO_ROWS_FOUND');
--print('Retrieved Value: '||p_attr||' = '||attr_value );
END IF;
IF (my_retvals.COUNT = 0) THEN
attr_value := 'NO_DATA_FOUND';
--print('Retrieved Value: '||p_attr||' = '||attr_value );
END IF;
IF (my_retvals.COUNT > 1) THEN
attr_value := 'TOO_MANY_ROWS';
--print('Retrieved Value: '||p_attr||' = '||attr_value );
END IF;
my_entry := DBMS_LDAP.next_entry(my_session, my_entry);
entry_index := entry_index+1;
END LOOP;
--print('YOu should have at lease one entry of "my_entry is not null"');
RETURN attr_value;
END get_attribute; -
Scheduled Report Fails To Run If User Password Has Expired
Why can't a report, that has been scheduled for a user whose password has expired, continue to run and go to its predefined destinations?
A user doesn't know until he/she attempts to log in that there is a password expiration issue. They may have scheduled the report to go to a multitude of inboxes, but if their password has expired, the report doesn't run.
I can understand "some" issues with the necessity to stop the report until credentials are updated correctly. However, Business Objects doesn't notify a user until it has expired, thus making it too late for those expecting something in their inbox.
Is there any method of notifying users that their password is going to be expiring soon, in advance? In other words, is there any "proactive" feature within Business Objects for notifying the user of an upcoming need to change their password?
HepMeThere is nothing built in to BusinessObjects for this, but there may be third-party tools available or you can write code that would do this.
In Query Builder, run this query:
Select SI_ID, SI_Name, SI_LAST_PASSWORD_CHANGE_TIME, SI_UPDATE_TS, SI_LASTLOGONTIME
from CI_SYSTEMOBJECTS where SI_Kind = 'User' and SI_NAME != 'Administrator' and SI_NAME != 'Guest' and SI_PASSWORDEXPIRE = 1
order by SI_LAST_PASSWORD_CHANGE_TIME desc, SI_UPDATE_TS desc
Users who are new and haven't yet changed their password will not have a value for SI_LAST_PASSWORD_CHANGE_TIME, so you can use SI_UPDATE_TS to determine when they were created.
You could build an application that uses this query to determine who is getting close to password expiration and send out an email reminding those users to change their passwords.
-Dell -
List of users who were granted particular function in oracle apps R12 db?
Hi
I need to list all users who were granted particular function (suppliers) from oracle apps R12 database. User -->Resp -->Menu --> Submenu/function. I have two queries like the following
--Below sql query give all users those
having Purchasing and Payables application access.
SELECT UNIQUE u.user_id, SUBSTR (u.user_name, 1, 30) user_name,
SUBSTR (r.responsibility_name, 1, 60) responsiblity,
SUBSTR (a.application_name, 1, 50) application
FROM fnd_user u,
fnd_user_resp_groups g,
fnd_application_tl a,
fnd_responsibility_tl r
WHERE g.user_id(+) = u.user_id
AND g.responsibility_application_id = a.application_id
AND a.application_id = r.application_id
AND g.responsibility_id = r.responsibility_id
AND a.application_name in ('Puchasing','Payables')
ORDER BY SUBSTR (user_name, 1, 30),
SUBSTR (a.application_name, 1, 50),
SUBSTR (r.responsibility_name, 1, 60);
--Below sql query gives function name.
SELECT function_id, user_function_name, creation_date, description
FROM applsys.fnd_form_functions_tl where function_id=1348;
What other tables to join to get all users having this function (suppliers) granted?
RegardsYou cannot move a post to another forum.
You can repost your entire text as another post in the other forum.
You can then mark this thread as "answered" -- just to close it.
Hemant K Chitale
Edited by: Hemant K Chitale on Jan 16, 2011 5:11 PM -
PowerShell - List all users that have access to a particular SPLIstItem
Hi there,
In PowerShell - how to list all users that have access to a particular SPLIstItem?
Thanks so much in advance.Hi frob,
According to your description, my understanding is that you want to list all users who have access to a particular SharePoint list item via PowerShell.
You can use the following PowerShell command:
$web = Get-SPWeb http://sp/sites/First
$list=$web.Lists["listV2"]
$item=$list.Items | where {$_['ID'] -eq 1}
$item | Select -ExpandProperty RoleAssignments |Select {$_.Member.DisplayName}, {$_.Member.LoginName}, RoleDefinitionBindings
In the above command, you need to change the web URL to your site's URL, change “listV2” to the name of your list, and change the ‘1’ to the ID of the list item.
The result looks like:
Best Regards,
Wendy
Wendy Li
TechNet Community Support -
Hi,
I want to fetch the list of users who all are having full access to the sharepoint list using client object model with .Net
Please let me know if any property for the user object or any other way to get it.
Thanks in advance.Here you are complete code i created from some years it lists all groups and users, you can just add a check in the permissions loop to see if it is equal to Full Control.
Private void GetData(object obj)
MyArgs args = obj as MyArgs;
try
if (args == null)
return; // called without parameters or invalid type
using (ClientContext clientContext = new ClientContext(args.URL))
// clientContext.AuthenticationMode = ClientAuthenticationMode.;
NetworkCredential credentials = new NetworkCredential(args.UserName, args.Password, args.Domain);
clientContext.Credentials = credentials;
RoleAssignmentCollection roles = clientContext.Web.RoleAssignments;
ListViewItem lvi;
ListViewItem.ListViewSubItem lvsi;
ListViewItem lvigroup;
ListViewItem.ListViewSubItem lvsigroup;
clientContext.Load(roles);
clientContext.ExecuteQuery();
foreach (RoleAssignment orole in roles)
clientContext.Load(orole.Member);
clientContext.ExecuteQuery();
//name
//MessageBox.Show(orole.Member.LoginName);
lvi = new ListViewItem();
lvi.Text = orole.Member.LoginName;
lvsi = new ListViewItem.ListViewSubItem();
lvsi.Text = orole.Member.PrincipalType.ToString();
lvi.SubItems.Add(lvsi);
//get the type group or user
// MessageBox.Show(orole.Member.PrincipalType.ToString());
if (orole.Member.PrincipalType.ToString() == "SharePointGroup")
lvigroup = new ListViewItem();
lvigroup.Text = orole.Member.LoginName;
// args.GroupsList.Items.Add(lvigroup);
DoUpdate1(lvigroup);
Group group = clientContext.Web.SiteGroups.GetById(orole.Member.Id);
UserCollection collUser = group.Users;
clientContext.Load(collUser);
clientContext.ExecuteQuery();
foreach (User oUser in collUser)
lvigroup = new ListViewItem();
lvigroup.Text = "";
lvsigroup = new ListViewItem.ListViewSubItem();
lvsigroup.Text = oUser.LoginName;
lvigroup.SubItems.Add(lvsigroup);
//args.GroupsList.Items.Add(lvigroup);
DoUpdate1(lvigroup);
// MessageBox.Show(oUser.LoginName);
RoleDefinitionBindingCollection roleDefsbindings = null;
roleDefsbindings = orole.RoleDefinitionBindings;
clientContext.Load(roleDefsbindings);
clientContext.ExecuteQuery();
//permission level
lvsi = new ListViewItem.ListViewSubItem();
string permissionsstr = string.Empty;
for (int i = 0; i < roleDefsbindings.Count; i++)
if (i == roleDefsbindings.Count - 1)
permissionsstr = permissionsstr += roleDefsbindings[i].Name;
else
permissionsstr = permissionsstr += roleDefsbindings[i].Name + ", ";
lvsi.Text = permissionsstr;
lvi.SubItems.Add(lvsi);
// args.PermissionsList.Items.Add(lvi);
DoUpdate2(lvi);
catch (Exception ex)
MessageBox.Show(ex.Message);
finally
DoUpdate3();
Kind Regards, John Naguib Technical Consultant/Architect MCITP, MCPD, MCTS, MCT, TOGAF 9 Foundation -
Generate a list of users who has admins rights in BO XI.
Post Author: bstn82
CA Forum: Administration
Any one has an idea how to produce a list of users who has admins rights?Post Author: TAZ
CA Forum: Administration
launch query builder from the admin launchpad
enter this query
select * from ci_systemobjects where si_parentid=19
this will give you a list of all the members of the administrators group.
You can experiment with query builder and possibly ask for help in the DEV forum if you need to write a more complex query.
Regards,
Tim -
How can I find out the list of users who has the access to IT 0008
All,
How can I find out the list of users who has the W R permission for IT 008
for others?
SUIM doe not look like giving me the correct results.
Please advise.
Thanks,
From
PT.combine tables AGR_1251 and table AGR_Users on keyfield AGR_USERS
in tabel AGR_1251 select on Field LOW values IT0008.OR W OR R,
noiw you get also other values
So better solution run the query twice over AGR1251 first on IT0008 and secondly on values W OR R and then the result over table AGR_USERS
Youu also might put an additional selection on object P* (only selecting HR objects)
output wll be UID in table AGR_USERS -
"Password has expired" for user created via UME API
Hi,
I have written a service that processes new user accounts and uses the UME API to create them. The code works fine on my local Sneak Preview installation of EP6 SP16, allowing the created users to logon and forcing them to change their password on first login.
When I try and run this code on EP6 SP14 it completes without generating any exceptions but when I try and login I get the message "Password has expired" and cannot login or change the users password.
Does anyone know why?
I have the following UME settings for both servers:
ume.logon.security_policy.password_change_allowed = TRUE
ume.logon.security_policy.password_change_required = TRUE
ume.logon.security_policy.password_expire_days = 99999
The SP14 server also uses LDAP to authenticate users primarily and has the following setting:
ume.persistence.data_source_configuration = dataSourceConfiguration_ads_deep_readonly_db.xml
There are some other UME configuration differences but none that seem relevant to this problem.
Can anyone suggest what the problem might be?
Cheers,
Steve ArcherThe Xp machine is fine acessing the mb
its the macbook that is having a problem accessing the xp machine coz it says that the password has expired
but there is no password for the user on the xp machine that i am trying to access from my mb
so that would be:
xp to mb = fine all working
mb to xp = password expired even though no password required for the xp user -
How to get list of users who reset password using FIM portal
How to get list of users who reset password using FIM portal
-Thanks Rakesh SawantHi Rakesh,
I think you are looking for something like this:
Using Powershell to list all users that had completed
a password reset within the last 30 days
If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer. -
List of users who has access to current community
Hi,
Is there an API which provides list of users who have access to current community in ALUI? Will there be huge performance impact in retrieving the list of all users who have access to current communty?
Thanks
SampathSorry,
I am not quite following you..
Users can only view a community if the permissions exist for that specific community. I dont understand what do you meant by
"I need to let user type a name and show his/her user ID from the list of users who have access to the current community".
Are you trying to look at user permissions based on a list of communities existing in the portal? The user can't even get to that community if he doesn't have permissions. -
How to get the list of users who has access for list of tcodes.
How to get the list of users who has access for list of tcodes.
Go to transaction SUIM, this has a number of reports for users/authorisations
open the Where used>Autorization Values>In Users
and double click to execute
in authorisation object, enter S_TCODE
then press the "Enter Values" button
It will offer entry boxes to put the transaction code you are interesed in.
Then execute and the list of users with access to this transaciton code will be returned. -
How to list of Users who are using Crystal XI application?
Hi all,
Thanks for your support provided so far.
I need to get the list of users who are all using the Crystal XI application. I tried to get this info from the Business Objects Enterprise Applications in CMC but it was not there. Where can I find this information?
kindly help me.
Thanks,
Bhuvan RThere is not such a portlet available out of the box...
Have you looked at the code share section?
If you want to develop yourself, I don't think this is achievable using the IDK (remote interface)
But It is definitely possible to create such a portlet using the server API (drawback: the portlet has to live where a portal component is installed - WS, automation or Portal) -
List of users who have access to multiple mailboxes
Hi,
I got the list of around three hundred generic mailboxes
Please help me with the command which can help me to get the report of all users who has access on those generic mailbox.Hi,
If you want to export these permissions to a csv file, you can use the following cmdlet:
Get-Mailbox -ResultSize Unlimited | Get-MailboxPermission | Where {$_.user -notlike "NT AUTHORITY\SELF" -and $_.IsInherited -eq $false} | Select Identity,User,@{Name='Access Rights';Expression={[String]::join(‘, ‘, $_.AccessRights)}} | Export-Csv
C:\MailboxAccess.csv -NoTypeInformation
Hope this can be helpful to you.
Best regards,
If you have feedback for TechNet Subscriber Support, contact
[email protected]
Amy Wang
TechNet Community Support
Maybe you are looking for
-
Dependent LOVs in Discoverer Admin
Hi All, Can we create dependent LOVs in Discoverer. If yes can anyone throw some light that. regards, gt1982
-
I have a WRT54GS Wireless-G broadband router. I've had it for some time and it seems to work well. The problem is that a few days ago the desktop it was connected to stopped being able to get onto the internet. The router was still connected and the
-
How can I locate a stolen i phone without icloud downloaded
How can I locate a stolen i phone without icloud downloaded
-
Add new type phones CUCM 4.2
Hello, i have work to buy new phones in organization. But 7900 not selling now, how i see. How i can add new types phones to my CUCM. Thanks!
-
I want to turn on the content filters for a Samsung Galaxy S4, but get the message: The cell phone associated with this number is not compatible with the Content Filters service. If this is a 4G LTE device please check back at a later date as we are