Make a user a member of a group
I am trying to use CVS and have been following the guide here and in that guide the default groups for the user happens to be good for the situation. However in my case, it is not.
My main user account is a member of:
_lpadmin com.apple.access_ssh com.apple.access_screensharing admin
Now how would I add "wheel" to this list to allow me to use CVS?
Well, that didn't help - I'm contacting the support through the ADC (Apple Developer Connection) since they would know what CVS is and be able to help me more specifically - it was only a guess that that was a reason I was not able to do what I wanted, and apparently an incorrect one at that.
Thanks anyway.
Similar Messages
-
Groups are not displaying in the user's member of tab
Hi ,
We have a issue,
After mapping any AD group in CMC,the groups and users are displaying in the cmc list. but when we go to the properties of the user and member of option ,the groups are not displaying .
After restarting the CMS every thing works fine.
Every time after adding a new user we should restart the CMS, it is very difficult for us as number of users are working on this .
We are using number of AD groups.
Is there any resolution for this with out restarting the CMS.
Thank you in advance.
Environment -
BO XI3.1,
LDAP authentication.
Thanks & Regards,
Collin.The LDAP graph is responsible for showing the membership when viewing the user properties, an issue like this would indicate the graph is not auto updating. It normally builds when starting the CMS then every 15 minutes or so for new users (depending on system activity). It shouldn't lose any info (if it does this indicates a caching or communication problem with AD). There is a graphtimeout setting in the registry (search SAP notes) if this were disabled then it may cause similar symptoms.
I'm not aware of any bugs in 3.1 causing this behavior so you may need to open a case with support (authentication team) to help troubleshoot.
Regards,
Tim -
Getting current user's member of group
Hi expert(s),
I have developed web application using jsp, now i need to know whether the current user logged in at client PC, is member of certain group available in the database, i can get current user using System.getProperty(), but i have to get the list of groups, he/she belongs to. So that i can check his group to authenticate...
What is the workaround?
Waiting for your kind reply.
Thanks & Regards,
Sri.Experts, i give you .net code for done my need, i need to convert/use it in java platform, please give me some useful tips.
If G_sSecurityMode = "ADSL" Then
GUser = System.Environment.UserName
ReDim sGroup(6)
'Default NT user groups which will be created at every system during installation
sGroup(0) = "CPMSDOMAINADMIN"
sGroup(1) = "CPMSCLIENTADMIN"
sGroup(2) = "CPMSDATAPREPADMIN"
sGroup(3) = "CPMSDATAPREPUSER"
sGroup(4) = "CPMSINVENTORYADMIN"
sGroup(5) = "CPMSINVENTORYUSER"
G_sUserGroup = " " 'Global variable defined in GLbdecleration module
'Loop defined to identify the group(s) associated with the current NT user
For i = 0 To 5
objGroup = GetObject("WinNT://" & sMachine _
& "/" & sGroup(i) & ",group")
For Each objUser In objGroup.Members
If UCase(GUser) = UCase(objUser.Name) Then
G_sUserGroup += "'" + sGroup(i) + "'" + ","
End If
Next
Next
G_sUserGroup = G_sUserGroup.TrimEnd(",") 'To truncate the last "," in a g_susergroup string
If Len(Trim(G_sUserGroup)) = 0 Then
MsgBox("No group(s) defined for the user " + GUser, MsgBoxStyle.Information)
Me.Close()
End If
Else
MsgBox("Invalid Security Definition", MsgBoxStyle.Information)
Me.Close()
End If -
How to get repitative group a user is member of
Hi,
i have a user in our domain who is member of number of groups. This means in MemberOF tab of the user there are larg number of groups. Now i want to remove some groups which are repitated.
Example -
1. In MemberOf Tab - properties tab -- of John, there are 3 DL/SG "Group_1" and "Group_2" and "Group_3".
2. Now "Group_3" is a member of "group_1". So i want to remove "Group_3" from the MemberOf Tab of John properties. This will reduce the MemberOf List.
3. how to do i find this repetative Groups using powershell ?
Please let me know if my query is not clear.
Thanks for your help.The following PowerShell script worked well in my test domain. I did not use the AD Module cmdlets, as they are generally slower when you deal with large resultsets (all groups and all users in the domain). This script simply outputs all cases where any
user is a member of both a group, and a nested member of the group. This will reveal the extent of issue, and whether you want to "correct" all such cases. In place of the statement that outputs the cases, you can add code to "correct"
it (remove membership in $Member, the child group, for the user).
# UserNestedGroups.ps1
# Script to find cases where users are members of both a group and a
# nested group member of the group.
# Hash table of groups and their direct group members.
$GroupMembers = @{}
# Search entire domain.
$Domain = [System.DirectoryServices.ActiveDirectory.Domain]::GetCurrentDomain()
$Root =
$Domain.GetDirectoryEntry()
$Searcher = [System.DirectoryServices.DirectorySearcher]$Root
$Searcher.PageSize
= 200
$Searcher.SearchScope
= "subtree"
$Searcher.PropertiesToLoad.Add("distinguishedName") >
$Null
$Searcher.PropertiesToLoad.Add("member") >
$Null
# Filter on all group objects.
$Searcher.Filter =
"(objectCategory=group)"
$Results =
$Searcher.FindAll()
# Enumerate groups and populate Hash table. The key value will be
# the Distinguished Name of the group. The item value will be an array
# of the Distinguished Names of all members of the group that are groups.
# The item value starts out as an empty array, since we don't know yet
# which members are groups.
ForEach ($Group
In $Results)
$DN
= [string]$Group.properties.Item("distinguishedName")
$Script:GroupMembers.Add($DN, @())
# Enumerate the groups again to populate the item value arrays.
# Now we can check each member to see if it is a group.
ForEach ($Group
In $Results)
$DN
= [string]$Group.properties.Item("distinguishedName")
$Members
= @($Group.properties.Item("member"))
# Enumerate the members of the group.
ForEach ($Member
In $Members)
# Check if the member is a group.
If ($Script:GroupMembers.ContainsKey($Member))
# Add the Distinguished Name of this member to the item value array.
$Script:GroupMembers[$DN] +=
$Member
# Retrieve all user objects and their direct group memberships (except primary).
$Searcher2 = [System.DirectoryServices.DirectorySearcher]$Root
$Searcher2.PageSize
= 200
$Searcher2.SearchScope
= "subtree"
$Searcher2.PropertiesToLoad.Add("distinguishedName") >
$Null
$Searcher2.PropertiesToLoad.Add("memberOf") >
$Null
# Filter on all user objects.
$Searcher2.Filter =
"(&(objectCategory=person)(objectClass=user))"
$Results =
$Searcher2.FindAll()
# Enumerate users and their direct group memberships.
ForEach ($User
In $Results)
$DN
= [string]$User.properties.Item("distinguishedName")
$Groups
= @($User.properties.Item("memberOf"))
ForEach ($Group
In $Groups)
# Enumerate all group members of $Group.
ForEach ($Member
In $Script:GroupMembers[$Group])
# Check if user is also a member of $Member.
If ($Groups
-Contains $Member)
"User $DN is a member of:`n Parent: $Group`n Child: $Member"
Note, if you copy the script above you will need to correct the cases of word wrapping. I try to avoid using scroll bars, even for code.
Richard Mueller - MVP Directory Services -
Cannot Add user to CMC Group when they are a member of LDAP group
On PreProduction Server CMC
Softerra LDAP browser used to verify user is a member of LDAP group
User does not show as a member of that group in the CMC
Cannot add user to LDAP group showing in CMC, the same group shows the member in LDAP browser
On Production Server CMC
For kicks I logged into the CMC on Production and I found the user is correctly showing as a member of the Group
Why doesn't the groups in CMC show what is actually showing in the LDAP browser?Hi,
Check if you have also mapped in both servers the same groups. It might be that there are some groups missing in the Pre-prod.
Also, try restarting the CMS. I have seen similar issues that are solved after forcing the recreation of the graph.
If after the restart you still can't see the groups, check the mapping on the LDAP server. It might be that both servers do not use the same attribute mappings.
Regards,
Julian -
Hi,
I need VB script which to checks the perticular user in AD and if it exists;that user needs to be removed from the member of perticular group
Ex:- Lets say
I have a user 783562 , I need to search this user in AD to verify user exists or not. If not then I no need to remove the mebership from perticular group
Second scenario:-
If user exists then I need to remove the user membership from the perticular group.I want to do it in automation
Manual Path:-
1.Type dsa.msc in run command of IT session(we using it to connect remote desktop).
2. Select the domain & right click (EX:-corp.ds.xxyyzz.com) and select "Find" to find the user form the domain.
3. Type the user name in the Name field and click on "Find Now" button user name will be displayed in search result.
4. Double click on this user ID and select "Member Of" tab.
5. Select any member of group from the Name section then click on "Remove" button.
6. Finally click on "Apply" and "OK" button.
Kindly help me out to do this by using vb script.
Thanks
RajaUsage: CScript NameOfVBS.vbs //NOLOGO /User:Jane.Doe /GroupDN:CN=Group1,DC=Contoso,DC=com
Option Explicit
On Error Resume Next
Dim str_User
Dim str_GroupDN
Dim obj_Connection
Dim obj_Command
Dim obj_RootDSE
Dim str_DNSDomain
Dim str_Base
Dim str_Filter
Dim str_Attributes
Dim str_Query
Dim obj_RecordSet
Dim obj_Group
Dim str_ADsPath
Dim obj_User
str_User = WScript.Arguments.Named("User")
str_GroupDN = WScript.Arguments.Named("GroupDN")
If Len(Trim(str_User)) > 0 And Len(Trim(str_GroupDN)) > 0 Then
Set obj_Connection = CreateObject("ADODB.Connection")
Set obj_Command = CreateObject("ADODB.Command")
obj_Connection.Provider = "ADsDSOOBject"
obj_Connection.Open "Active Directory Provider"
Set obj_Command.ActiveConnection = obj_Connection
Set obj_RootDSE = GetObject("LDAP://RootDSE")
str_DNSDomain = obj_RootDSE.Get("defaultNamingContext")
str_Base = "<LDAP://" & str_DNSDomain & ">"
str_Filter = "(&(objectCategory=person)(sAMAccountName=" & str_User & "))"
str_Attributes = "cn,ADsPath"
str_Query = str_Base & ";" & str_Filter & ";" & str_Attributes & ";subtree"
obj_Command.CommandText = str_Query
obj_Command.Properties("Page Size") = 1000
obj_Command.Properties("Timeout") = 1
obj_Command.Properties("Cache Results") = False
Set obj_RecordSet = obj_Command.Execute
obj_RecordSet.MoveFirst
If obj_RecordSet.RecordCount = 0 Then
WScript.Echo str_User & " was not found"
Else
Set obj_Group = GetObject("LDAP://" & str_GroupDN)
str_ADsPath = obj_RecordSet.Fields("ADsPath")
Set obj_User = GetObject(str_ADsPath)
obj_Group.Remove(obj_User.AdsPath)
If Err.Number = 0 Then
WScript.Echo str_User & " was removed from group " & str_GroupDN
ElseIf Err.Number = -2147016651 Then
WScript.Echo str_User & " not a member of group " & str_GroupDN
Else
WScript.Echo str_User & " error removing from group " & str_GroupDN
End If
End If
End If -
To make the User group Filed mandatory for the Tcode SU01
Hi Gurus,
I need to make the 'User Group' Filed mandatory for the Tcode 'SU01'.
I know we can do it using Transaction variant.
But i do not want to create a new custom Tcode (e.g ZSU01) for the same.
I understand we have a User Exit 'SUSR0001' for the Tcode SU01.
Can we use this to make the User Group field mandatory.
Or is there is some alternative way to do this ?
Please advice.
Thanks in Advance.
Regards,
Anubhav MishraHi Anubhav Mishra,
> I know we can do it using Transaction variant.
> But i do not want to create a new custom Tcode (e.g ZSU01) for the same.
You don't need to create a custom Tcode to assign a transaction variant, just declare it as being a "standard variant" (in the SHD0 transaction too), and you'll make it assigned automatically to SU01 when this last is started.
BR
Sandra -
SharePoint 2013 workflow 'If current user is a member of a group'
I would like my workflow to check if the user who created the current item is a member of a group, preferably an Active Directory group but if not a SharePoint group.
How can I do this please?
Thanks
Julie
J SykesHi,
You need to install the CodePlex solution(UsefulSPDWorkflowActivities_0.5.0.zip) from the following URL to the get custom activities in the SharePoint Designer.
http://spdactivities.codeplex.com/
Once you download, you will have setup instructions file, follow these instructions to install the solution (Installguide.txt).
I would suggest you to use the SharePoint 2013 style workflow, as we need to implement latest one, may be 2010 style workflows will be removed with the latest version of SharePoint later. And also other thing, you will not have to depend on the other
solutions such as CodePlex
Use the "Call Http Web Service" action and use the REST API to check whether the user is in within group.
http://sharepoint/_api/SP.AppContextSite(@target)/web
/getbyname('Approvers')/Users?$filter=Id eq " + CurrentItem.CreatedBy.ID + "
?@target='http://sharepoint'
http://msdn.microsoft.com/en-us/library/office/dn531432(v=office.15).aspx
http://blog.vgrem.com/2014/05/08/consuming-the-sharepoint-2013-rest-service-from-sharepoint-designer/
Please don't forget to mark it answered, if your problem resolved or helpful. -
Mail server automatically cc all email for user to other acct but group...
Back on April 2007, David_X answered this question:
How to have the mail server automatically cc all e-mail for user to other accounts, (gmail, hotmail, etc). Here is the old post that explains that:
http://discussions.apple.com/thread.jspa?messageID=4357149�
What I did not catch at the time was if you setup a Group, one of three ways, the cc step no longer works. There is a fourth way but it is not practical. Creating local groups on individual Macs.
*Group method 1 per David_X:*
Use edited group files on the server.
The following sends to members of groups but does not show all recipients in the received message...
In /etc/postfix/aliases, add...
groupname: :include:/path/to/groupname.txt
In a file called groupname.txt (using plaintext editor)...
[email protected]
[email protected]
Reload aliases...
sudo newaliases
sudo postalias aliases
sudo postfix reload
Mail sent to [email protected] gets passed to amavisd once, before then being relayed out for each individual recipient.
*Group method 2 per David_X:*
Make a user, e.g., "accounts"
In mail settings, select 'Forward' option and enter the group members' email addresses, comma separated e.g.,
[email protected],[email protected]
This gets a bit 'long' for lots of members.
The email then gets sent to each of the people in this list.
*Group method 3 that I just discovered:*
Create a group in Workgroup Manager.
Drag the users you want in it.
Save.
Test sending to that group.
Best part, the group name shows up in Address Book if you have LDAP setup.
So I have setup all three. If I send an email to any type of group, they work.
The problem:
If one of those members in the group also has a BCC setup to Gmail or any other outside email, they never get the e-mail copied out to the external account.
Example:
I send an email to [email protected]. He gets the email there and also a copy at his Gmail account.
If I send an email to the Sales group that jsmith belongs to, he gets the email there but nothing at the Gmail account.
It looks like the mail server processes the "aliases" file and skips the "Recipient_bcc" file that handles the forwards.
Is there a way to have my cake and eat it too? David_X your thoughts also?
Thanks everyone!Bump.
Short version. Sales guy has a Gmail account he wants his e-mail copied to also.
Send e-mail directly to his Xserve account, he gets it there and it gets sent on to his Gmail account.
Send an e-mail to the sales Group that he is a member of, he gets it there but it never gets sent out to the Gmail account.
Ideas? -
Not able to get group name by using memberof class, getting Total groups as 0 even I am member of that group. Through this memberof class I am trying to find full qualified name(DN) of my group.
code I have used:
//specify the LDAP search filter
String searchFilter = "(&(objectClass=user)(CN=Username))";
//Specify the Base for the search
String searchBase = "";
Also I have used,
String searchFilter = "(&(objectClass=user)(CN=Username))";
//Specify the Base for the search
String searchBase = "ou=ibmgroups,o=ibm.com";
But in both cases I am getting value for Total groups as 0.
Code Reference:
* memberof.java
* December 2004
* Sample JNDI application to determine what groups a user belongs to
import java.util.Hashtable;
import javax.naming.*;
import javax.naming.ldap.*;
import javax.naming.directory.*;
public class memberof {
public static void main (String[] args) {
Hashtable env = new Hashtable();
String adminName = "CN=Administrator,CN=Users,DC=ANTIPODES,DC=COM";
String adminPassword = "XXXXXXX";
String ldapURL = "ldap://mydc.antipodes.com:389";
env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
//set security credentials, note using simple cleartext authentication
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,adminName);
env.put(Context.SECURITY_CREDENTIALS,adminPassword);
//connect to my domain controller
env.put(Context.PROVIDER_URL,ldapURL);
try {
//Create the initial directory context
LdapContext ctx = new InitialLdapContext(env,null);
//Create the search controls
SearchControls searchCtls = new SearchControls();
//Specify the search scope
searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
//specify the LDAP search filter
String searchFilter = "(&(objectClass=user)(CN=Andrew Anderson))";
//Specify the Base for the search
String searchBase = "DC=antipodes,DC=com";
//initialize counter to total the group members
int totalResults = 0;
//Specify the attributes to return
String returnedAtts[]={"memberOf"};
searchCtls.setReturningAttributes(returnedAtts);
//Search for objects using the filter
NamingEnumeration answer = ctx.search(searchBase, searchFilter, searchCtls);
//Loop through the search results
while (answer.hasMoreElements()) {
SearchResult sr = (SearchResult)answer.next();
System.out.println(">>>" + sr.getName());
//Print out the groups
Attributes attrs = sr.getAttributes();
if (attrs != null) {
try {
for (NamingEnumeration ae = attrs.getAll();ae.hasMore();) {
Attribute attr = (Attribute)ae.next();
System.out.println("Attribute: " + attr.getID());
for (NamingEnumeration e = attr.getAll();e.hasMore();totalResults++) {
System.out.println(" " + totalResults + ". " + e.next());
catch (NamingException e) {
System.err.println("Problem listing membership: " + e);
System.out.println("Total groups: " + totalResults);
ctx.close();
catch (NamingException e) {
System.err.println("Problem searching directory: " + e);
Any help will be highly appreciated.Not able to get group name by using memberof class, getting Total groups as 0 even I am member of that group. Through this memberof class I am trying to find full qualified name(DN) of my group.
code I have used:
//specify the LDAP search filter
String searchFilter = "(&(objectClass=user)(CN=Username))";
//Specify the Base for the search
String searchBase = "";
Also I have used,
String searchFilter = "(&(objectClass=user)(CN=Username))";
//Specify the Base for the search
String searchBase = "ou=ibmgroups,o=ibm.com";
But in both cases I am getting value for Total groups as 0.
Code Reference:
* memberof.java
* December 2004
* Sample JNDI application to determine what groups a user belongs to
import java.util.Hashtable;
import javax.naming.*;
import javax.naming.ldap.*;
import javax.naming.directory.*;
public class memberof {
public static void main (String[] args) {
Hashtable env = new Hashtable();
String adminName = "CN=Administrator,CN=Users,DC=ANTIPODES,DC=COM";
String adminPassword = "XXXXXXX";
String ldapURL = "ldap://mydc.antipodes.com:389";
env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
//set security credentials, note using simple cleartext authentication
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,adminName);
env.put(Context.SECURITY_CREDENTIALS,adminPassword);
//connect to my domain controller
env.put(Context.PROVIDER_URL,ldapURL);
try {
//Create the initial directory context
LdapContext ctx = new InitialLdapContext(env,null);
//Create the search controls
SearchControls searchCtls = new SearchControls();
//Specify the search scope
searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
//specify the LDAP search filter
String searchFilter = "(&(objectClass=user)(CN=Andrew Anderson))";
//Specify the Base for the search
String searchBase = "DC=antipodes,DC=com";
//initialize counter to total the group members
int totalResults = 0;
//Specify the attributes to return
String returnedAtts[]={"memberOf"};
searchCtls.setReturningAttributes(returnedAtts);
//Search for objects using the filter
NamingEnumeration answer = ctx.search(searchBase, searchFilter, searchCtls);
//Loop through the search results
while (answer.hasMoreElements()) {
SearchResult sr = (SearchResult)answer.next();
System.out.println(">>>" + sr.getName());
//Print out the groups
Attributes attrs = sr.getAttributes();
if (attrs != null) {
try {
for (NamingEnumeration ae = attrs.getAll();ae.hasMore();) {
Attribute attr = (Attribute)ae.next();
System.out.println("Attribute: " + attr.getID());
for (NamingEnumeration e = attr.getAll();e.hasMore();totalResults++) {
System.out.println(" " + totalResults + ". " + e.next());
catch (NamingException e) {
System.err.println("Problem listing membership: " + e);
System.out.println("Total groups: " + totalResults);
ctx.close();
catch (NamingException e) {
System.err.println("Problem searching directory: " + e);
Any help will be highly appreciated. -
User does not appear in group created from SAP role
Hello --
I have a user that has logged into InfoView successfully with SAP authentication and is showing in the CMC under the "User List." When I view the list of users in the group that was created from the SAP role he was a part of, he is not there. When I go to the user account and view "Member of," the group IS shown in the list.
Any idea? Any way I can "refresh" the group or anything like that?
Thanks
CaseyThanks for the replies.
We are on XI 3.1 FP1.8 and we do have a CMS cluster. Server reboots this weekend seem to have resolved the problem. I am curious why this question was asked, though:
"Did you reassign the user to another SAP role after the user has already logged at least once in the InfoView?"
Is this something that could have caused the problem or is it a possible workaround if we run into the issue again?
Thanks again...
Casey -
BPM 11g - FYI task to send a copy to each member of a group
In BPM 11g I am trying to send an FYI task to each member of a group. They should each get their own copy of the task so that it does not get removed from their inbox when the first person dismisses it.
I was not successful in getting multiple copies of the task using FYI type even when multiple users were defined in the participant list. So, I changed the participant type to parallel. This was successful in sending mulitiple copies when I defined a participant list of hard coded users, but the process stopped and waited until at least one of the users dismissed it (so the FYI only behavior changed, but I can get around that with a parallel process flow).
Still using parallel participant type, I have been trying to change from my hard coded list of users to a security group of users. If I set assignment to the group, only one task is created for the group. So, I have been trying to assign to users and use the expression ids:getUsersInGroup('LoanAnalyticGroup') to get the users in this group. I have tried several approaches to this expression but can't get it to work.
Has anyone else successfully implemented sending tasks to all members of a group in 11g? Any advice?Hi all,
We are also facing same issue.
The function ids:getUsersInGroup doesnt return value.
Even i imported identityservice.xsd and is_config .xsd and created variable using the *"users"* element of identityservice.xsd schema and assigned the value to this variable.
But Audit always says
*"XPath query string returns multiple nodes.*
*According to BPEL4WS spec 1.1 section 14.3, The assign activity part and query should not return multipe nodes.*
*Please check the BPEL source at line number "72" and verify the part and xpath query "*
Help me to resolve this issue. -
EPM 11.1.2.1 add a MSAD user to a HSS native group via MaxL command
Hi there
I want to take over MSAD user as EPM (Essbase) user in a HSS native group via MaxL command:
This works fine as long as the user is already in at least one other group (with at least server access).
If I want to do same for a "new" user it fails.
Is there any trick to also make it work for this case?
see here:
alter user 'mynewuser' add to group 'ALL_SERVER_ACCESS_ ESS1';
ERROR - 1051012 - User mynewuser does not exist.
or even
alter user 'mynewuser@domain' add to group 'ALL_SERVER_ACCESS_ ESS1';
ERROR - 1051012 - User mynewuser@domain does not exist.
Thanks in advance!
Regards
AndreYou will probably need issue a create first for example
create or replace user 'essuser' type external;
alter user 'essuser' add to group essgroup;
or
create or replace user 'essuser@LDAPNAME' type external;
alter user 'essuser@LDAPNAME' add to group essgroup;
Cheers
John
http://john-goodwin.blogspot.com/ -
How do i query a sun one server for a member of a group
Hi Folks
I would like to know if any one know how to query a sun one directory server to list all members of the group.
currenty i have this
LDAP://SERVERNAME.test.com:5221/ou=people,dc=testrelsec,dc=com>;(&(objectclass = person)& adsPath;subTree"
this query gives me all users in the directory ,
Now I have created a static group called GROUPONE using sunone console GUI and made 2 people member of that group
I need the ldap query which can list the members of GROUPONE
thanks
g4hbk
thanks in advance
g4hbkhttps://www.redhat.com/archives/fedora-directory-users/2005-September/msg00010.html
Useful script to extract LDAP based user posixGroup memberships information
===
Assuming you are using posixGroup objectclass and memberUid attribute to
store your membership information, you may find my shell script useful
and handy.
It works on Solaris LDAP Client with "ldapaddent" and "ldaplist"
commands, and works against FDS, SUN DS or OpenLDAP.
===
Gary -
How can I make my users password unchangable
Hi Expert,
i faced a problme currently. we have a training system which a lot of people have full authorization.
my users password have been changed several times by someone else. so i do not know if i can make it unchangable? and do you know if i can make the system do not lock my user after failed login attempt.
THANKS IN ADVANCE!
Cliff> Thanks for your answer however some trainee have full access to the system due to the basis course needs..
Have a look at grouping users and make sure the trainers are in a group that cannot be modified by the trainees. As a security consultant I tend to disbelieve anyone who claims to need 'full access'. What is this course about? "How to administer a complete SAP system all alone? "
Apart from that I always tell my trainees to behave or they'll fail the course/test/certification. I always assume I deal with adults when SAP is concerned.
> for the second part why i can not change login/fails_to_user_lock in RZ11? I have "SAP_ALL" authorization
That could be because it is in the default profile or instance profile. Have a look at RZ10 instead. (http://help.sap.com/saphelp_nw04/helpdata/EN/22/41c43ac23cef2fe10000000a114084/frameset.htm and http://help.sap.com/saphelp_nw04/helpdata/EN/c4/3a6247505211d189550000e829fbbd/frameset.htm)
Jurjen (Heeck is my last name)
Edited by: Jurjen Heeck on Sep 3, 2008 9:12 AM
Maybe you are looking for
-
Logical system name in SRM system
We are into SRM version 5.(SRM server 5.5) with the backend system as SAP ECC 6.0 . The logical system is defined as '0000000050' for backend SAP system . All the systems like CRM and BW uses this as the logical system name for backend system . Rece
-
Problem in data import from dump file on NAS device
I am using oracle 10g on solaris 10. I have mounted NAS device on my solaris machine. I have created a directory object dir on my NAS storage in which i have placed the dump file. Now when i execute the following command to import data impdp user/pas
-
CS5 color print problem using CS6
I upgraded from CS5 on XP to CS6 hosted on Windows 7, 64 bit. Images loaded into my new CS6 system from my camera or the web display and print perfectly. I am using the same printer for CS6 as I did for CS5, an Epson 3800. However, when I open and
-
Query on filter on fact column
Query on filter on fact column IN OBIA AR Transactions subject Area the fact is filtered on (RA_CUST_TRX_LINE_GL_DIST_ALL.ACCOUNT_CLASS='REV' OR RA_CUST_TRX_LINE_GL_DIST_ALL.ACCOUNT_CLASS='UNEARN') in the Informatica ETL (RA_CUST_TRX_LINE_GL_DIST_ALL
-
Unable to retrieve/send data after processing a dimension
Hi All, we have a problem with dimensions. After adding a member in a dimension we no longer can create an EVDRE report or retrieve/send data successfully. If we create a report with the member added in the dimension, the following error message appe