List all users whos password has expired

Similar Messages

• How can I list all users who have access to a particular TABLE or VIEW

  Hi,
  Can someone tell me how I can list all users who have access to a particular TABLE or VIEW.
  Abhishek

  Hi,
  Take a look on this link: http://www.petefinnigan.com/tools.htm
  Cheers

• How to determine users whose password has expired?

  Hi.
  Is there a programatic method of determing which users have expired passwords and/or have been locked out?
  Thanks.
  Ian

  Ian,
  you need to check pwdaccountlocktime for locked users.
  following a pl/sql code snippet that should give you a hint how to do that pwd expiration.
  regards,
  --Olaf
  -- returns users expected expiration date
  -- using pwdchangedtime (users) + pwdmaxage (from password policy)
  FUNCTION get_pwd_expiration_date(p_userid IN VARCHAR2)
  RETURN VARCHAR2
  IS
  l_expiration_date VARCHAR2(10);
  l_user_dn VARCHAR2(256);
  BEGIN
  SELECT 'cn='||p_userid||MAX(DECODE(gf_name,'LDAP_BASE',
  decode(substr(gf_value,1,1),',',gf_value,','||gf_value),null))
  INTO l_user_dn
  FROM gr_application_parameters;
  l_expiration_date := to_char(to_date(substr(get_attribute(p_userid,
  'pwdchangedtime'),1,14),'RRRRMMDDHH24MISS')+get_pwdmaxage_days,'MM/DD/RRRR');
  RETURN l_expiration_date;
  END;
  -- returns pwdmaxage in days from ldap
  FUNCTION get_pwdmaxage_days
  RETURN NUMBER
  IS
  l_pwdmaxage_days NUMBER;
  ldapbase VARCHAR2(256);
  l_dn VARCHAR2(256);
  retval PLS_INTEGER;
  BEGIN
  SELECT MAX(DECODE(gf_name,'LDAP_BASE',decode(substr(gf_value,1,1),',',
  gf_value,','||gf_value),null))
  INTO ldapbase
  FROM gr_application_parameters;
  l_dn := substr(ldapbase,instr(ldapbase,',',2));
  l_pwdmaxage_days := to_number(get_attribute(my_global_session,
  'cn=PwdPolicyEntry,cn=Common,cn=Products,cn=OracleContext'||l_dn,'pwdmaxage'))/24/60/60;
  BEGIN
  retval := DBMS_LDAP.unbind_s(my_global_session);
  EXCEPTION when others THEN
  null;
  END;
  RETURN l_pwdmaxage_days;
  END;
  FUNCTION get_attribute(p_session IN DBMS_LDAP.session,
  search_base IN VARCHAR2,
  p_attr IN VARCHAR2)
  RETURN VARCHAR2
  IS
  my_session DBMS_LDAP.SESSION;
  my_message DBMS_LDAP.message;
  my_entry DBMS_LDAP.MESSAGE;
  attrs DBMS_LDAP.STRING_COLLECTION;
  my_retvals DBMS_LDAP.STRING_COLLECTION;
  action NUMBER;
  retval PLS_INTEGER;
  entry_index PLS_INTEGER;
  attr_value varchar2(2048);
  BEGIN
  IF p_session is null THEN
  ldap_utl.get_ldap_session(my_session);
  ELSE
  my_session := p_session;
  END IF;
  attrs(1) := p_attr;
  retval := DBMS_LDAP.search_s(my_session,
  search_base,
  DBMS_LDAP.SCOPE_SUBTREE,
  'objectclass=*',
  attrs,
  0,
  my_message);
  my_entry := DBMS_LDAP.first_entry(my_session, my_message);
  entry_index := 1;
  --print('Got my_entry. Check to see if its null now');
  WHILE my_entry IS NOT NULL
  LOOP
  --print('my_entry is not null');
  my_retvals := DBMS_LDAP.get_values (my_session, my_entry, p_attr);
  IF (my_retvals.COUNT = 1) THEN
  attr_value := nvl(my_retvals(my_retvals.FIRST),'NO_ROWS_FOUND');
  --print('Retrieved Value: '||p_attr||' = '||attr_value );
  END IF;
  IF (my_retvals.COUNT = 0) THEN
  attr_value := 'NO_DATA_FOUND';
  --print('Retrieved Value: '||p_attr||' = '||attr_value );
  END IF;
  IF (my_retvals.COUNT > 1) THEN
  attr_value := 'TOO_MANY_ROWS';
  --print('Retrieved Value: '||p_attr||' = '||attr_value );
  END IF;
  my_entry := DBMS_LDAP.next_entry(my_session, my_entry);
  entry_index := entry_index+1;
  END LOOP;
  --print('YOu should have at lease one entry of "my_entry is not null"');
  RETURN attr_value;
  END get_attribute;

• Scheduled Report Fails To Run If User Password Has Expired

  Why can't a report, that has been scheduled for a user whose password has expired, continue to run and go to its predefined destinations?
  A user doesn't know until he/she attempts to log in that there is a password expiration issue.  They may have scheduled the report to go to a  multitude of inboxes, but if their password has expired, the report doesn't run.
  I can understand "some" issues with the necessity to stop the report until credentials are updated correctly.  However, Business Objects doesn't notify a user until it has expired, thus making it too late for those expecting something in their inbox.
  Is there any method of notifying users that their password is going to be expiring soon, in advance?  In other words, is there any "proactive" feature within Business Objects for notifying the user of an upcoming need to change their password?
  HepMe

  There is nothing built in to BusinessObjects for this, but there may be third-party tools available or you can write code that would do this.
  In Query Builder, run this query:
  Select SI_ID, SI_Name, SI_LAST_PASSWORD_CHANGE_TIME, SI_UPDATE_TS, SI_LASTLOGONTIME
  from CI_SYSTEMOBJECTS where SI_Kind = 'User' and SI_NAME != 'Administrator' and SI_NAME != 'Guest' and SI_PASSWORDEXPIRE = 1
  order by SI_LAST_PASSWORD_CHANGE_TIME desc, SI_UPDATE_TS desc
  Users who are new and haven't yet changed their password will not have a value for SI_LAST_PASSWORD_CHANGE_TIME, so you can use SI_UPDATE_TS to determine when they were created.
  You could build an application that uses this query to determine who is getting close to password expiration and send out an email reminding those users to change their passwords.
  -Dell

• List of users who were granted particular function in oracle apps R12 db?

  Hi
  I need to list all users who were granted particular function (suppliers) from oracle apps R12 database. User -->Resp -->Menu --> Submenu/function. I have two queries like the following
  --Below sql query give all users those
  having Purchasing and Payables application access.
  SELECT UNIQUE u.user_id, SUBSTR (u.user_name, 1, 30) user_name,
  SUBSTR (r.responsibility_name, 1, 60) responsiblity,
  SUBSTR (a.application_name, 1, 50) application
  FROM fnd_user u,
  fnd_user_resp_groups g,
  fnd_application_tl a,
  fnd_responsibility_tl r
  WHERE g.user_id(+) = u.user_id
  AND g.responsibility_application_id = a.application_id
  AND a.application_id = r.application_id
  AND g.responsibility_id = r.responsibility_id
  AND a.application_name in ('Puchasing','Payables')
  ORDER BY SUBSTR (user_name, 1, 30),
  SUBSTR (a.application_name, 1, 50),
  SUBSTR (r.responsibility_name, 1, 60);
  --Below sql  query gives function name.
  SELECT function_id, user_function_name, creation_date, description
  FROM applsys.fnd_form_functions_tl where function_id=1348;
  What other tables to join to get all users having this function (suppliers) granted?
  Regards

  You cannot move a post to another forum.
  You can repost your entire text as another post in the other forum.
  You can then mark this thread as "answered" -- just to close it.
  Hemant K Chitale
  Edited by: Hemant K Chitale on Jan 16, 2011 5:11 PM

• PowerShell - List all users that have access to a particular SPLIstItem

  Hi there,
  In PowerShell - how to list all users that have access to a particular SPLIstItem?
  Thanks so much in advance.

  Hi frob,
  According to your description, my understanding is that you want to list all users who have access to a particular SharePoint list item via PowerShell.
  You can use the following PowerShell command:
  $web = Get-SPWeb http://sp/sites/First
  $list=$web.Lists["listV2"]
  $item=$list.Items | where {$_['ID'] -eq 1}
  $item | Select -ExpandProperty RoleAssignments |Select {$_.Member.DisplayName}, {$_.Member.LoginName}, RoleDefinitionBindings
  In the above command, you need to change the web URL to your site's URL, change “listV2” to the name of your list, and change the ‘1’ to the ID of the list item.
  The result looks like:
  Best Regards,
  Wendy
  Wendy Li
  TechNet Community Support

• How to get list of users who all are having full access in sharepoint site using client object model c#

  Hi,
  I want to fetch the list of users who all are having full access to the sharepoint list using client object model with .Net
  Please let me know if any property for the user object or any other way to get it.
  Thanks in advance.

  Here you are complete code i created from some years it lists all groups and users, you can just add a check in the permissions loop to see if it is equal to Full Control.
  Private void GetData(object obj)
  MyArgs args = obj as MyArgs;
  try
  if (args == null)
  return; // called without parameters or invalid type
  using (ClientContext clientContext = new ClientContext(args.URL))
  // clientContext.AuthenticationMode = ClientAuthenticationMode.;
  NetworkCredential credentials = new NetworkCredential(args.UserName, args.Password, args.Domain);
  clientContext.Credentials = credentials;
  RoleAssignmentCollection roles = clientContext.Web.RoleAssignments;
  ListViewItem lvi;
  ListViewItem.ListViewSubItem lvsi;
  ListViewItem lvigroup;
  ListViewItem.ListViewSubItem lvsigroup;
  clientContext.Load(roles);
  clientContext.ExecuteQuery();
  foreach (RoleAssignment orole in roles)
  clientContext.Load(orole.Member);
  clientContext.ExecuteQuery();
  //name
  //MessageBox.Show(orole.Member.LoginName);
  lvi = new ListViewItem();
  lvi.Text = orole.Member.LoginName;
  lvsi = new ListViewItem.ListViewSubItem();
  lvsi.Text = orole.Member.PrincipalType.ToString();
  lvi.SubItems.Add(lvsi);
  //get the type group or user
  // MessageBox.Show(orole.Member.PrincipalType.ToString());
  if (orole.Member.PrincipalType.ToString() == "SharePointGroup")
  lvigroup = new ListViewItem();
  lvigroup.Text = orole.Member.LoginName;
  // args.GroupsList.Items.Add(lvigroup);
  DoUpdate1(lvigroup);
  Group group = clientContext.Web.SiteGroups.GetById(orole.Member.Id);
  UserCollection collUser = group.Users;
  clientContext.Load(collUser);
  clientContext.ExecuteQuery();
  foreach (User oUser in collUser)
  lvigroup = new ListViewItem();
  lvigroup.Text = "";
  lvsigroup = new ListViewItem.ListViewSubItem();
  lvsigroup.Text = oUser.LoginName;
  lvigroup.SubItems.Add(lvsigroup);
  //args.GroupsList.Items.Add(lvigroup);
  DoUpdate1(lvigroup);
  // MessageBox.Show(oUser.LoginName);
  RoleDefinitionBindingCollection roleDefsbindings = null;
  roleDefsbindings = orole.RoleDefinitionBindings;
  clientContext.Load(roleDefsbindings);
  clientContext.ExecuteQuery();
  //permission level
  lvsi = new ListViewItem.ListViewSubItem();
  string permissionsstr = string.Empty;
  for (int i = 0; i < roleDefsbindings.Count; i++)
  if (i == roleDefsbindings.Count - 1)
  permissionsstr = permissionsstr += roleDefsbindings[i].Name;
  else
  permissionsstr = permissionsstr += roleDefsbindings[i].Name + ", ";
  lvsi.Text = permissionsstr;
  lvi.SubItems.Add(lvsi);
  // args.PermissionsList.Items.Add(lvi);
  DoUpdate2(lvi);
  catch (Exception ex)
  MessageBox.Show(ex.Message);
  finally
  DoUpdate3();
  Kind Regards, John Naguib Technical Consultant/Architect MCITP, MCPD, MCTS, MCT, TOGAF 9 Foundation

• Generate a list of users who has admins rights in BO XI.

  Post Author: bstn82
  CA Forum: Administration
  Any one has an idea how to produce a list of users who has admins rights?

  Post Author: TAZ
  CA Forum: Administration
  launch query builder from the admin launchpad
  enter this query
  select * from ci_systemobjects where si_parentid=19
  this will give you a list of all the members of the administrators group.
  You can experiment with query builder and possibly ask for help in the DEV forum if you need to write a more complex query.
  Regards,
  Tim

• How can I find out the list of users who has the access to IT 0008

  All,
  How can I find out the list of users who has the W R permission for IT 008
  for others?
  SUIM doe not look like giving me the correct results.
  Please advise.
  Thanks,
  From
  PT.

  combine tables AGR_1251 and table AGR_Users on keyfield AGR_USERS
  in tabel AGR_1251 select on Field LOW values IT0008.OR W OR R,
  noiw you get also other values
  So better solution run the query twice over AGR1251 first on IT0008 and secondly on values W OR R and then the result over table AGR_USERS
  Youu also might put an additional selection on object P* (only selecting HR objects)
  output wll be UID in table AGR_USERS

• "Password has expired" for user created via UME API

  Hi,
  I have written a service that processes new user accounts and uses the UME API to create them. The code works fine on my local Sneak Preview installation of EP6 SP16, allowing the created users to logon and forcing them to change their password on first login.
  When I try and run this code on EP6 SP14 it completes without generating any exceptions but when I try and login I get the message "Password has expired" and cannot login or change the users password.
  Does anyone know why?
  I have the following UME settings for both servers:
  ume.logon.security_policy.password_change_allowed = TRUE
  ume.logon.security_policy.password_change_required = TRUE
  ume.logon.security_policy.password_expire_days = 99999
  The SP14 server also uses LDAP to authenticate users primarily  and has the following setting:
  ume.persistence.data_source_configuration = dataSourceConfiguration_ads_deep_readonly_db.xml
  There are some other UME configuration differences but none that seem relevant to this problem.
  Can anyone suggest what the problem might be?
  Cheers,
  Steve Archer

  The Xp machine is fine acessing the mb
  its the macbook that is having a problem accessing the xp machine coz it says that the password has expired
  but there is no password for the user on the xp machine that i am trying to access from my mb
  so that would be:
  xp to mb = fine all working
  mb to xp = password expired even though no password required for the xp user

• How to get list of users who reset password using FIM portal

  How to get list of users who reset password using FIM portal
  -Thanks Rakesh Sawant

  Hi Rakesh,
  I think you are looking for something like this:
  Using Powershell to list all users that had completed
  a password reset within the last 30 days
  If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.

• List of users who has access to current community

  Hi,
  Is there an API which provides list of users who have access to current community in ALUI? Will there be huge performance impact in retrieving the list of all users who have access to current communty?
  Thanks
  Sampath

  Sorry,
  I am not quite following you..
  Users can only view a community if the permissions exist for that specific community. I dont understand what do you meant by
  "I need to let user type a name and show his/her user ID from the list of users who have access to the current community".
  Are you trying to look at user permissions based on a list of communities existing in the portal? The user can't even get to that community if he doesn't have permissions.

• How to get the list of users who has access for list of tcodes.

  How to get the list of users who has access for list of tcodes.

  Go to transaction SUIM, this has a number of reports for users/authorisations
  open the Where used>Autorization Values>In Users
  and double click to execute
  in authorisation object, enter S_TCODE
  then press the "Enter Values" button
  It will offer entry boxes to put the transaction code you are interesed in.
  Then execute and the list of users with access to this transaciton code will be returned.

• How to list of Users who are using Crystal XI application?

  Hi all,
  Thanks for your support provided so far.
  I need to get the list of users who are all using the Crystal XI application. I tried to get this info from the Business Objects Enterprise Applications in CMC but it was not there. Where can I find this information?
  kindly help me.
  Thanks,
  Bhuvan R

  There is not such a portlet available out of the box...
  Have you looked at the code share section?
  If you want to develop yourself, I don't think this is achievable using the IDK (remote interface)
  But It is definitely possible to create such a portlet using the server API (drawback: the portlet has to live where a portal component is installed - WS, automation or Portal)

• List of users who have access to multiple mailboxes

  Hi,
  I got the list of around three hundred generic mailboxes
  Please help me with the command which can help me to get the report of all users who has access on those  generic mailbox.

  Hi,
  If you want to export these permissions to a csv file, you can use the following cmdlet:
  Get-Mailbox -ResultSize Unlimited | Get-MailboxPermission | Where {$_.user -notlike "NT AUTHORITY\SELF" -and $_.IsInherited -eq $false} | Select Identity,User,@{Name='Access Rights';Expression={[String]::join(‘, ‘, $_.AccessRights)}} | Export-Csv
  C:\MailboxAccess.csv -NoTypeInformation
  Hope this can be helpful to you.
  Best regards,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Amy Wang
  TechNet Community Support