Multiple agents for a workitem execution

Similar Messages

• Function to get the Agents for the Workitem not the possible agents

  Hi Guys ,
  To get the user for each scienario we saved it in the ztable. Now i want to show in report the list possible agents assigned to workitem. ts should agents asigned to it ... its can be four or five ....

  Try to make use of the FM SAP_WAPI_GET_WI_AGENTS, if at all you want to know the agents with respect to a workitem
  and
  check the below too
  SWL_WI_DISP_ACTUAL_AGENTS     
  SWL_WI_DISP_EXCLUDED_AGENTS   
  SWL_WI_DISP_POSSIBLE_AGENTS   

• Multi-file Loading Single Package from Multiple Agents?

  hi,
  i am trying to load the Multiple files from(Interface-Load Multiple file to Oracle DB) a package. as this activity is done multiple loading files Name from single table.
  I just want to know that is there any solution to execute the single Package from Multiple Agents for Load Balancing from Single table. & if YES then refer any document????
  Regards,
  AMSII

  done.resovlesd my self

• How to run multiple CodedUI Ordered Tests over multiple Test Agents for parallel execution using Test Controller

  we are using VS 2013, I need to run multiple Coded UI Ordered Tests in parallel on different agents.
  My requirement :
  Example:   I have 40 Coded UI Test scripts in single solution/project. i want to run in different OS environments(example 5 OS ).  I have created 5 Ordered tests with the same 40 test cases. 
  I have one Controller machine and 5 test agent machines. Now I want my tests to be distributed in a way that every agent gets 1 Ordered test to execute. 
  Machine_C = Controller (Controls Machine_1,2,3,4,5)
  Machine_1 = Test Agent 1 (Should execute Ordered Test 1 (ex: OS - WIN 7) )
  Machine_2 = Test Agent 2 (Should execute Ordered Test 2 (ex:
  OS - WIN 8) )
  Machine_3 = Test Agent 3 (Should execute Ordered Test 3
  (ex: OS - WIN 2008 server)  )
  Machine_4 = Test Agent 4 (Should execute Ordered Test 4 (ex:
  OS - WIN 2012 server) )
  Machine_5 = Test Agent 5 (Should execute Ordered Test 5 (ex:
  OS - WIN 2003 server) )
  I have changed the  “MinimumTestsPerAgent” app setting value
  as '1' in controller’s configuration file (QTController.exe.config).
  When I run the Ordered tests from the test explorer all Test agent running with each Ordered test and showing the status as running. but with in the 5 Test Agents only 2 Agents executing the test cases remaining all 3 agents not executing the test cases but
  status showing as 'running' still for long time (exp: More then 3 hr) after that all so  its not responding. 
  I need to know how I can configure my controller or how I can tell it to execute these tests in parallel on different test agents. This will help me reducing the script execution time. 
   I am not sure what steps I am missing. 
  It will be of great help if someone can guide me how this can be achieved.
  -- > One more thing Can I Run one Coded UI Ordered Test on One Specific Test Agent?
  ex: Need to run ordered Test 1 in Win 7 OS (Test Agent 1) only.
  Thanks in Advance.

  Hi Divakar,
  Thank you for posting in MSDN forum.
  As far as I know, we cannot specify coded UI ordered test run on specific test agent. And it is mainly that test controller determine which coded UI ordered test assign to which test agent.
  Generally, I know that if we want to run multiple CodedUI Ordered Tests over multiple Test Agents for parallel execution using Test Controller.
  We will need to change the MinimumTestsPerAgent property to 1 in the test controller configuration file (QTControllerConfig.exe.config) as you said.
  And then we will need to change the bucketSize number of tests/number of machines in the test settings.
  For more information about how to set this bucketSize value, please refer the following blog.
  http://blogs.msdn.com/b/aseemb/archive/2010/08/11/how-to-run-automated-tests-on-different-machines-in-parallel.aspx
  You can refer this Jack's suggestion to run your coded UI ordered test in lab Environment or load test.
  https://social.msdn.microsoft.com/Forums/vstudio/en-US/661e73da-5a08-4c9b-8e5a-fc08c5962783/run-different-codedui-tests-simultaneously-on-different-test-agents-from-a-single-test-controller?forum=vstest
  Best Regards,
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Workitem forward to multiple Agents

  Dear friends,
                      please let me know whether I can forward a workitem to multiple agents.
  with regards,
  Sudhahar R

  Dear Arghadip,
                         Thanks for your suggestion and it works well. I never thought changing a personal setting in our own workflow inbox will enable multiple forwarding for a Workflow Administrator role. This is not the way its should be enabled...   this seems like a workaround. what you think?
  Thanks & Regards,
  Sudhahar R.

• Finalize() method being called multiple times for same object?

  I got a dilly of a pickle here.
  Looks like according to the Tomcat output log file that the finalize method of class User is being called MANY more times than is being constructed.
  Here is the User class:
  package com.db.multi;
  import java.io.*;
  import com.db.ui.*;
  import java.util.*;
  * @author DBriscoe
  public class User implements Serializable {
      private String userName = null;
      private int score = 0;
      private SocketImage img = null;
      private boolean gflag = false;
      private Calendar timeStamp = Calendar.getInstance();
      private static int counter = 0;
      /** Creates a new instance of User */
      public User() { counter++;     
      public User(String userName) {
          this.userName = userName;
          counter++;
      public void setGflag(boolean gflag) {
          this.gflag = gflag;
      public boolean getGflag() {
          return gflag;
      public void setScore(int score) {
          this.score = score;
      public int getScore() {
          return score;
      public void setUserName(String userName) {
          this.userName = userName;
      public String getUserName() {
          return userName;
      public void setImage(SocketImage img) {
          this.img = img;
      public SocketImage getImage() {
          return img;
      public void setTimeStamp(Calendar c) {
          this.timeStamp = c;
      public Calendar getTimeStamp() {
          return this.timeStamp;
      public boolean equals(Object obj) {
          try {
              if (obj instanceof User) {
                  User comp = (User)obj;
                  return comp.getUserName().equals(userName);
              } else {
                  return false;
          } catch (NullPointerException npe) {
              return false;
      public void finalize() {
          if (userName != null && !userName.startsWith("OUTOFDATE"))
              System.out.println("User " + userName + " destroyed. " + counter);
      }As you can see...
  Every time a User object is created, a static counter variable is incremented and then when an object is destroyed it appends the current value of that static member to the Tomcat log file (via System.out.println being executed on server side).
  Below is the log file from an example run in my webapp.
  Dustin
  User Queue Empty, Adding User: com.db.multi.User@1a5af9f
  User Dustin destroyed. 0
  User Dustin destroyed. 0
  User Dustin destroyed. 0
  User Dustin destroyed. 0
  User Dustin destroyed. 0
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 1
  User Dustin destroyed. 1
  User Dustin destroyed. 1
  User Dustin destroyed. 1
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  User Dustin destroyed. 2
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  User Dustin destroyed. 3
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  User Dustin destroyed. 4
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  User Dustin destroyed. 5
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  User Dustin destroyed. 6
  Joe
  USER QUEUE: false
  INSIDE METHOD: false
  AFTER METHOD: false
  User Dustin pulled from Queue, Game created: Joe
  User Already Placed: Dustin with Joe
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  User Dustin destroyed. 7
  INSIDE METHOD: false
  INSIDE METHOD: false
  USER QUEUE: true
  INSIDE METHOD: false
  INSIDE METHOD: false
  User Dustin destroyed. 9
  User Joe destroyed. 9
  User Dustin destroyed. 9
  User Dustin destroyed. 9
  User Dustin destroyed. 9
  User Dustin destroyed. 9
  INSIDE METHOD: true
  INSIDE METHOD: false
  USER QUEUE: true
  INSIDE METHOD: false
  INSIDE METHOD: false
  INSIDE METHOD: true
  INSIDE METHOD: false
  USER QUEUE: true
  INSIDE METHOD: false
  INSIDE METHOD: false
  It really does seem to me like finalize is being called multiple times for the same object.
  That number should incremement for every instantiated User, and finalize can only be called once for each User object.
  I thought this was impossible?
  Any help is appreciated!

  Thanks...
  I am already thinking of ideas to limit the number of threads.
  Unfortunately there are two threads of execution in the servlet handler, one handles requests and the other parses the collection of User objects to check for out of date timestamps, and then eliminates them if they are out of date.
  The collection parsing thread is currently a javax.swing.Timer thread (Bad design I know...) so I believe that I can routinely check for timestamps in another way and fix that problem.
  Just found out too that Tomcat was throwing me a ConcurrentModificationException as well, which may help explain the slew of mysterious behavior from my servlet!
  The Timer thread has to go. I got to think of a better way to routinely weed out User objects from the collection.
  Or perhaps, maybe I can attempt to make it thread safe???
  Eg. make my User collection volatile?
  Any opinions on the best approach are well appreciated.

• No log for am policy agent for iis6

  Hello!
  Im trying to get Policy Agent for IIS to run on my Win Srv 2003 with IIS6 and Sharepoint Services.
  I am running the OpenSSO version of Access Manager.
  I have installed the agent and done the initial cofiguration.
  When i try to browse the resource i get a login prompt (IIS Basic Auth)and cannot login followed by "Not Authorized 401.3"
  I should get redirected to the AM Login page, shouldn't I?
  I tried to look for answers in the log file but the /debug/<id> directory i empty.
  Anyone know what to do?
  The amAgent.properties file:
  # $Id: AMAgent.properties,v 1.103 2005/09/19 22:08:34 madan Exp $
  # The syntax of this file is that of a standard Java properties file,
  # see the documentation for the java.util.Properties.load method for a
  # complete description. (CAVEAT: The SDK in the parser does not currently
  # support any backslash escapes except for wrapping long lines.)
  # All property names in this file are case-sensitive.
  # NOTE: The value of a property that is specified multiple times is not
  # defined.
  # WARNING: The contents of this file are classified as an UNSTABLE
  # interface by Sun Microsystems, Inc. As such, they are subject to
  # significant, incompatible changes in any future release of the
  # software.
  # The name of the cookie passed between the Access Manager
  # and the SDK.
  # WARNING: Changing this property without making the corresponding change
  # to the Access Manager will disable the SDK.
  com.sun.am.cookie.name = iPlanetDirectoryPro
  # The URL for the Access Manager Naming service.
  com.sun.am.naming.url = http://login.lta.mil.se:8080/opensso/namingservice
  # The URL of the login page on the Access Manager.
  com.sun.am.policy.am.login.url = http://login.lta.mil.se:8080/opensso/UI/Login
  # Name of the file to use for logging messages.
  com.sun.am.policy.agents.config.local.log.file = C:/Sun/Access_Manager/Agents/2.2/debug/Identifier_1414639615/amAgent
  # This property is used for Log Rotation. The value of the property specifies
  # whether the agent deployed on the server supports the feature of not. If set
  # to false all log messages are written to the same file.
  com.sun.am.policy.agents.config.local.log.rotate = true
  # Name of the Access Manager log file to use for logging messages to
  # Access Manager.
  # Just the name of the file is needed. The directory of the file
  # is determined by settings configured on the Access Manager.
  com.sun.am.policy.agents.config.remote.log = amAuthLog.sharepoint.lta.mil.se.80
  # Set the logging level for the specified logging categories.
  # The format of the values is
  # <ModuleName>[:<Level>][,<ModuleName>[:<Level>]]*
  # The currently used module names are: AuthService, NamingService,
  # PolicyService, SessionService, PolicyEngine, ServiceEngine,
  # Notification, PolicyAgent, RemoteLog and all.
  # The all module can be used to set the logging level for all currently
  # none logging modules. This will also establish the default level for
  # all subsequently created modules.
  # The meaning of the 'Level' value is described below:
  # 0 Disable logging from specified module*
  # 1 Log error messages
  # 2 Log warning and error messages
  # 3 Log info, warning, and error messages
  # 4 Log debug, info, warning, and error messages
  # 5 Like level 4, but with even more debugging messages
  # 128 log url access to log file on AM server.
  # 256 log url access to log file on local machine.
  # If level is omitted, then the logging module will be created with
  # the default logging level, which is the logging level associated with
  # the 'all' module.
  # for level of 128 and 256, you must also specify a logAccessType.
  # *Even if the level is set to zero, some messages may be produced for
  # a module if they are logged with the special level value of 'always'.
  com.sun.am.log.level = 5
  # The org, username and password for Agent to login to AM.
  com.sun.am.policy.am.username = UrlAccessAgent
  com.sun.am.policy.am.password = PN4rEZ1uhx1404ivWY6HPQ==
  # Name of the directory containing the certificate databases for SSL.
  com.sun.am.sslcert.dir = C:/Sun/Access_Manager/Agents/2.2/iis6/cert
  # Set this property if the certificate databases in the directory specified
  # by the previous property have a prefix.
  com.sun.am.certdb.prefix =
  # Should agent trust all server certificates when Access Manager
  # is running SSL?
  # Possible values are true or false.
  com.sun.am.trust_server_certs = true
  # Should the policy SDK use the Access Manager notification
  # mechanism to maintain the consistency of its internal cache? If the value
  # is false, then a polling mechanism is used to maintain cache consistency.
  # Possible values are true or false.
  com.sun.am.notification.enable = true
  # URL to which notification messages should be sent if notification is
  # enabled, see previous property.
  com.sun.am.notification.url = http://sharepoint.lta.mil.se:80/amagent/UpdateAgentCacheServlet?shortcircuit=false
  # This property determines whether URL string case sensitivity is
  # obeyed during policy evaluation
  com.sun.am.policy.am.url_comparison.case_ignore = true
  # This property determines the amount of time (in minutes) an entry
  # remains valid after it has been added to the cache. The default
  # value for this property is 3 minutes.
  com.sun.am.policy.am.polling.interval=3
  # This property allows the user to configure the User Id parameter passed
  # by the session information from the access manager. The value of User
  # Id will be used by the agent to set the value of REMOTE_USER server
  # variable. By default this parameter is set to "UserToken"
  com.sun.am.policy.am.userid.param=UserToken
  # Profile attributes fetch mode
  # String attribute mode to specify if additional user profile attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user profile attributes will be introduced.
  # HTTP_HEADER - additional user profile attributes will be introduced into
  # HTTP header.
  # HTTP_COOKIE - additional user profile attributes will be introduced through
  # cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.profile.attribute.fetch.mode=NONE
  # The user profile attributes to be added to the HTTP header. The
  # specification is of the format ldap_attribute_name|http_header_name[,...].
  # ldap_attribute_name is the attribute in data store to be fetched and
  # http_header_name is the name of the header to which the value needs
  # to be assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.profile.attribute.map=cn|common-name,ou|organiz ational-unit,o|organization,mail|email,employeenumber|employee-number,c|country
  # Session attributes mode
  # String attribute mode to specify if additional user session attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user session attributes will be introduced.
  # HTTP_HEADER - additional user session attributes will be introduced into HTTP header.
  # HTTP_COOKIE - additional user session attributes will be introduced through cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.session.attribute.fetch.mode=NONE
  # The session attributes to be added to the HTTP header. The specification is
  # of the format session_attribute_name|http_header_name[,...].
  # session_attribute_name is the attribute in session to be fetched and
  # http_header_name is the name of the header to which the value needs to be
  # assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.session.attribute.map=
  # Response Attribute Fetch Mode
  # String attribute mode to specify if additional user response attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user response attributes will be introduced.
  # HTTP_HEADER - additional user response attributes will be introduced into
  # HTTP header.
  # HTTP_COOKIE - additional user response attributes will be introduced through
  # cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.response.attribute.fetch.mode=NONE
  # The response attributes to be added to the HTTP header. The specification is
  # of the format response_attribute_name|http_header_name[,...].
  # response_attribute_name is the attribute in policy response to be fetched and
  # http_header_name is the name of the header to which the value needs to be
  # assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.response.attribute.map=
  # The cookie name used in iAS for sticky load balancing
  com.sun.am.policy.am.lb.cookie.name = GX_jst
  # indicate where a load balancer is used for Access Manager
  # services.
  # true | false
  com.sun.am.load_balancer.enable = false
  ####Agent Configuration####
  # this is for product versioning, please do not modify it
  com.sun.am.policy.agents.config.version=2.2
  # Set the url access logging level. the choices are
  # LOG_NONE - do not log user access to url
  # LOG_DENY - log url access that was denied.
  # LOG_ALLOW - log url access that was allowed.
  # LOG_BOTH - log url access that was allowed or denied.
  com.sun.am.policy.agents.config.audit.accesstype = LOG_BOTH
  # Agent prefix
  com.sun.am.policy.agents.config.agenturi.prefix = http://sharepoint.lta.mil.se:80/amagent
  # Locale setting.
  com.sun.am.policy.agents.config.locale = en_US
  # The unique identifier for this agent instance.
  com.sun.am.policy.agents.config.instance.name = unused
  # Do SSO only
  # Boolean attribute to indicate whether the agent will just enforce user
  # authentication (SSO) without enforcing policies (authorization)
  com.sun.am.policy.agents.config.do_sso_only = true
  # The URL of the access denied page. If no value is specified, then
  # the agent will return an HTTP status of 403 (Forbidden).
  com.sun.am.policy.agents.config.accessdenied.url =
  # This property indicates if FQDN checking is enabled or not.
  com.sun.am.policy.agents.config.fqdn.check.enable = true
  # Default FQDN is the fully qualified hostname that the users should use
  # in order to access resources on this web server instance. This is a
  # required configuration value without which the Web server may not
  # startup correctly.
  # The primary purpose of specifying this property is to ensure that if
  # the users try to access protected resources on this web server
  # instance without specifying the FQDN in the browser URL, the Agent
  # can take corrective action and redirect the user to the URL that
  # contains the correct FQDN.
  # This property is set during the agent installation and need not be
  # modified unless absolutely necessary to accommodate deployment
  # requirements.
  # WARNING: Invalid value for this property can result in the Web Server
  # becoming unusable or the resources becoming inaccessible.
  # See also: com.sun.am.policy.agents.config.fqdn.check.enable,
  # com.sun.am.policy.agents.config.fqdn.map
  com.sun.am.policy.agents.config.fqdn.default = sharepoint.lta.mil.se
  # The FQDN Map is a simple map that enables the Agent to take corrective
  # action in the case where the users may have typed in an incorrect URL
  # such as by specifying partial hostname or using an IP address to
  # access protected resources. It redirects the browser to the URL
  # with fully qualified domain name so that cookies related to the domain
  # are received by the agents.
  # The format for this property is:
  # com.sun.am.policy.agents.config.fqdn.map = [invalid_hostname|valid_hostname][,...]
  # This property can also be used so that the agents use the name specified
  # in this map instead of the web server's actual name. This can be
  # accomplished by doing the following.
  # Say you want your server to be addressed as xyz.hostname.com whereas the
  # actual name of the server is abc.hostname.com. The browsers only knows
  # xyz.hostname.com and you have specified polices using xyz.hostname.com at
  # the Access Manager policy console, in this file set the mapping as
  # com.sun.am.policy.agents.fqdn.map = valid|xyz.hostname.com
  # Another example is if you have multiple virtual servers say rst.hostname.com,
  # uvw.hostname.com and xyz.hostname.com pointing to the same actual server
  # abc.hostname.com and each of the virtual servers have their own policies
  # defined, then the fqdnMap should be defined as follows:
  # com.sun.am.policy.agents.fqdn.map = valid1|rst.hostname.com,valid2|uvw.hostname.com,valid3|xyz.hostname.com
  # WARNING: Invalid value for this property can result in the Web Server
  # becoming unusable or the resources becoming inaccessible.
  com.sun.am.policy.agents.config.fqdn.map =
  # Cookie Reset
  # This property must be set to true, if this agent needs to
  # reset cookies in the response before redirecting to
  # Access Manager for Authentication.
  # By default this is set to false.
  # Example : com.sun.am.policy.agents.config.cookie.reset.enable=true
  com.sun.am.policy.agents.config.cookie.reset.enable=false
  # This property gives the comma separated list of Cookies, that
  # need to be included in the Redirect Response to Access Manager.
  # This property is used only if the Cookie Reset feature is enabled.
  # The Cookie details need to be specified in the following Format
  # name[=value][;Domain=value]
  # If "Domain" is not specified, then the default agent domain is
  # used to set the Cookie.
  # Example : com.sun.am.policy.agents.config.cookie.reset.list=LtpaToken,
  # token=value;Domain=subdomain.domain.com
  com.sun.am.policy.agents.config.cookie.reset.list=
  # This property gives the space separated list of domains in
  # which cookies have to be set in a CDSSO scenario. This property
  # is used only if CDSSO is enabled.
  # If this property is left blank then the fully qualified cookie
  # domain for the agent server will be used for setting the cookie
  # domain. In such case it is a host cookie instead of a domain cookie.
  # Example : com.sun.am.policy.agents.config.cookie.domain.list=.sun.com .iplanet.com
  com.sun.am.policy.agents.config.cookie.domain.list=
  # user id returned if accessing global allow page and not authenticated
  com.sun.am.policy.agents.config.anonymous_user=anonymous
  # Enable/Disable REMOTE_USER processing for anonymous users
  # true | false
  com.sun.am.policy.agents.config.anonymous_user.enable=false
  # Not enforced list is the list of URLs for which no authentication is
  # required. Wildcards can be used to define a pattern of URLs.
  # The URLs specified may not contain any query parameters.
  # Each service have their own not enforced list. The service name is suffixed
  # after "# com.sun.am.policy.agents.notenforcedList." to specify a list
  # for a particular service. SPACE is the separator between the URL.
  com.sun.am.policy.agents.config.notenforced_list = SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/UI/* SERVER_PROTO://SERVER_HOST:SERVER_PORTCONSOLE_DEPLOY_URI/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/login_images/* SERVER_PROTO://SERVER_HOST:SERVER_PORT/docs* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/namingservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/sessionservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/loggingservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/profileservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/policyservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/config* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/js/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/css/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/authservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLAwareServlet SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLSOAPReceiver SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLPOSTProfileServlet
  # Boolean attribute to indicate whether the above list is a not enforced list
  # or an enforced list; When the value is true, the list means enforced list,
  # or in other words, the whole web site is open/accessible without
  # authentication except for those URLs in the list.
  com.sun.am.policy.agents.config.notenforced_list.invert = false
  # Not enforced client IP address list is a list of client IP addresses.
  # No authentication and authorization are required for the requests coming
  # from these client IP addresses. The IP address must be in the form of
  # eg: 192.168.12.2 1.1.1.1
  com.sun.am.policy.agents.config.notenforced_client_ip_list =
  # Enable POST data preservation; By default it is set to false
  com.sun.am.policy.agents.config.postdata.preserve.enable = false
  # POST data preservation : POST cache entry lifetime in minutes,
  # After the specified interval, the entry will be dropped
  com.sun.am.policy.agents.config.postcache.entry.lifetime = 10
  # Cross-Domain Single Sign On URL
  # Is CDSSO enabled.
  com.sun.am.policy.agents.config.cdsso.enable=false
  # This is the URL the user will be redirected to for authentication
  # in a CDSSO Scenario.
  com.sun.am.policy.agents.config.cdcservlet.url =
  # Enable/Disable client IP address validation. This validate
  # will check if the subsequent browser requests come from the
  # same ip address that the SSO token is initially issued against
  com.sun.am.policy.agents.config.client_ip_validation.enable = false
  # Below properties are used to define cookie prefix and cookie max age
  com.sun.am.policy.agents.config.profile.attribute.cookie.prefix = HTTP_
  com.sun.am.policy.agents.config.profile.attribute.cookie.maxage = 300
  # Logout URL - application's Logout URL.
  # This URL is not enforced by policy.
  # if set, agent will intercept this URL and destroy the user's session,
  # if any. The application's logout URL will be allowed whether or not
  # the session destroy is successful.
  com.sun.am.policy.agents.config.logout.url=
  # Any cookies to be reset upon logout in the same format as cookie_reset_list
  com.sun.am.policy.agents.config.logout.cookie.reset.list =
  # By default, when a policy decision for a resource is needed,
  # agent gets and caches the policy decision of the resource and
  # all resource from the root of the resource down, from the Access Manager.
  # For example, if the resource is http://host/a/b/c, the the root of the
  # resource is http://host/. This is because more resources from the
  # same path are likely to be accessed subsequently.
  # However this may take a long time the first time if there
  # are many many policies defined under the root resource.
  # To have agent get and cache the policy decision for the resource only,
  # set the following property to false.
  com.sun.am.policy.am.fetch_from_root_resource = true
  # Whether to get the client's hostname through DNS reverse lookup for use
  # in policy evaluation.
  # It is true by default, if the property does not exist or if it is
  # any value other than false.
  com.sun.am.policy.agents.config.get_client_host_name = true
  # The following property is to enable native encoding of
  # ldap header attributes forwarded by agents. If set to true
  # agent will encode the ldap header value in the default
  # encoding of OS locale. If set to false ldap header values
  # will be encoded in UTF-8
  com.sun.am.policy.agents.config.convert_mbyte.enable = false
  #When the not enforced list or policy has a wildcard '*' character, agent
  #strips the path info from the request URI and uses the resulting request
  #URI to check against the not enforced list or policy instead of the entire
  #request URI, in order to prevent someone from getting access to any URI by
  #simply appending the matching pattern in the policy or not enforced list.
  #For example, if the not enforced list has the value http://host/*.gif,
  #stripping the path info from the request URI will prevent someone from
  #getting access to http://host/index.html by using the URL http://host/index.html?hack.gif.
  #However when a web server (for exmample apache) is configured to be a reverse
  #proxy server for a J2EE application server, path info is interpreted in a different
  #manner since it maps to a resource on the proxy instead of the app server.
  #This prevents the not enforced list or policy from being applied to part of
  #the URI below the app serverpath if there is a wildcard character. For example,
  #if the not enforced list has value http://host/webapp/servcontext/* and the
  #request URL is http://host/webapp/servcontext/example.jsp the path info
  #is /servcontext/example.jsp and the resulting request URL with path info stripped
  #is http://host/webapp, which will not match the not enforced list. By setting the
  #following property to true, the path info will not be stripped from the request URL
  #even if there is a wild character in the not enforced list or policy.
  #Be aware though that if this is set to true there should be nothing following the
  #wildcard character '*' in the not enforced list or policy, or the
  #security loophole described above may occur.
  com.sun.am.policy.agents.config.ignore_path_info = false
  # Override the request url given by the web server with
  # the protocol, host or port of the agent's uri specified in
  # the com.sun.am.policy.agents.agenturiprefix property.
  # These may be needed if the agent is sitting behind a ssl off-loader,
  # load balancer, or proxy, and either the protocol (HTTP scheme),
  # hostname, or port of the machine in front of agent which users go through
  # is different from the agent's protocol, host or port.
  com.sun.am.policy.agents.config.override_protocol =
  com.sun.am.policy.agents.config.override_host =
  com.sun.am.policy.agents.config.override_port = true
  # Override the notification url in the same way as other request urls.
  # Set this to true if any one of the override properties above is true,
  # and if the notification url is coming through the proxy or load balancer
  # in the same way as other request url's.
  com.sun.am.policy.agents.config.override_notification.url =
  # The following property defines how long to wait in attempting
  # to connect to an Access Manager AUTH server.
  # The default value is 2 seconds. This value needs to be increased
  # when receiving the error "unable to find active Access Manager Auth server"
  com.sun.am.policy.agents.config.connection_timeout =
  # Time in milliseconds the agent will wait to receive the
  # response from Access Manager. After the timeout, the connection
  # will be drop.
  # A value of 0 means that the agent will wait until receiving the response.
  # WARNING: Invalid value for this property can result in
  # the resources becoming inaccessible.
  com.sun.am.receive_timeout = 0
  # The three following properties are for IIS6 agent only.
  # The two first properties allow to set a username and password that will be
  # used by the authentication filter to pass the Windows challenge when the Basic
  # Authentication option is selected in Microsoft IIS 6.0. The authentication
  # filter is named amiis6auth.dll and is located in
  # Agent_installation_directory/iis6/bin. It must be installed manually on
  # the web site ("ISAPI Filters" tab in the properties of the web site).
  # It must also be uninstalled manually when unintalling the agent.
  # The last property defines the full path for the authentication filter log file.
  com.sun.am.policy.agents.config.iis6.basicAuthentication.username =
  com.sun.am.policy.agents.config.iis6.basicAuthentication.password =
  com.sun.am.policy.agents.config.iis6.basicAuthentication.logFile = C:/Sun/Access_Manager/Agents/2.2/debug/Identifier_1414639615/amAuthFilter

  If the agent doesnot start properly you would always get redirected to com.sun.am.policy.agents.config.accessdenied.url , if thats not specified you will get a 403.
  For the agent itself check that the naming.url is correct. the agent username and passwords are correct, and see that the user has priviledges to write to the agent log files. Apart from these post the windows event logs.

• Is there a way to add multiple agents to a skill group at once?

  Hi All,
  Is there a way to add multiple agents to a skill group at once by using bulk edit or some other means?
  I am using ICM 8.0
  Thanks in advance.

  Hi Piyush,
  There is a tricky way of doing it in the config manager. Say for example, if you have 100 agents to be added, rename the agent so that they get listed first while adding to the skill group. This will reduce the effort of searching the agents. You can scroll and select the total number of agents till it is renamed and revert back once added to the skill groups
  Hope this helps
  Cheers,
  Dass
  Please rate useful posts

• SSIS 2012: Integration Services Catalog not showing data for most recent executions

  Techies--
  Under a previous deployment of an SSIS package, I was able to go to the Integration Services Catalog, look under the  folder-->project--> package  then right click and request a standard report for all executions. The report would display
  the execution details.
  Today a colleague recently deployed a newer version of the same package to a test server... which is failing from a job set up via sql agent.  I went to look at the root cause by going to the Integration Services Catalog to review the report. No execution
  data appears.  I looked at the filter--compared it to the filter I have set on the production copy of the stable version. The folder name, package name and project name match. Both have a status of 'All'. The date range is the same (2/19 - 2/25). 
  In fact, I went back to the test deployment and changed the date range to the date of the last failure (1/30).  Now I see data only from 1/30 but none for today's execution.
  Something must have happened in the deployment process--but what? How do I debug this issue with the reports--but even more importantly,  how do I get to the raw execution data to see what the story is on the failed execution itself?

  @Arthur, thanks for responding. In a nutshell, I searched through the ssisdb.catalog.event_messages table to determine roughly the same thing you determined--an execution for that package (or for that matter, any misnamed package) with today's timestamp
  simply never occurred--even though the job agent log appeared to indicate it had.
  I re-deployed the package ... forced an execution with an interactive run from the catalog... and viola! The execution info appeared through the standard reports as expected.
  Any idea where I could/should look for a wayward deployment? (BTW, the report for validations showed no data either on that first deployment).

• Multiple plans for my SQL- Which one is following?-11gr2

  11gr2, windows-64-bit
  I have one sql_id part of 3rd part application, need to tune it. When I tried to get its execution plan im seeing multiple plan_plan values. That means, multiple plans for
  same sql_id
  How could we know that which plan my sql_id is following.?
  SQL> set lines 300
  SQL> set pages 50
  SQL> select * from TABLE(dbms_xplan.display_awr('5z1r29wc6514q'));
  PLAN_TABLE_OUTPUT
  SQL_ID 5z1r29wc6514q
  SELECT INVOICE_ID,min(CHARGE_DATE),MAX(CHARGE_DATE),
  sum(TOTAL_EXCL_VAT),sum(case when instr(LEVEL2,:"SYS_B_0")>:"SYS_B_1"
  then SUM_QUANTITY else :"SYS_B_2" end) as KB from
  RATOR_CDR.INVOICE_DETAIL_LINE I  INNER JOIN SUBSCRIPTION S ON S.ID =
  I.SUBSCRIPTION_ID  inner join SERVICE S1 on S1.SUBSCRIPTION_ID=S.ID
  WHERE INVOICE_ID in (SELECT id from  RATOR.INVOICE WHERE
  invoice_number is  null) and  S1.PHONE_NUMBER=:1   and LEVEL1=:2  group
  by  INVOICE_ID
  Plan hash value: 216300602
  | Id  | Operation                            | Name                  | Rows  | Bytes | Cost (%CPU)| Time     | Pstart| Pstop |
  |   0 | SELECT STATEMENT                     |                       |       |       |  1350 (100)|       |          |       |
  |   1 |  HASH GROUP BY                       |                       |   333 | 40293 |  1350   (1)| 00:00:17 |       |       |
  |   2 |   HASH JOIN                          |                       |   333 | 40293 |  1348   (1)| 00:00:17 |       |       |
  |   3 |    NESTED LOOPS                      |                       |       |       |            |       |          |       |
  |   4 |     NESTED LOOPS                     |                       |  1638 |   161K|   866   (0)| 00:00:11 |       |       |
  |   5 |      NESTED LOOPS                    |                       |     1 |    34 |     2   (0)| 00:00:01 |       |       |
  |   6 |       TABLE ACCESS BY INDEX ROWID    | SERVICE               |     1 |    23 |     2   (0)| 00:00:01 |       |       |
  |   7 |        INDEX RANGE SCAN              | SERVICE__PHONE_NUMBER |     1 |       |     1   (0)| 00:00:01 |       |       |
  |   8 |       INDEX UNIQUE SCAN              | SUBSCRIPTION__ID_PK   |     1 |    11 |     0   (0)|       |          |       |
  |   9 |      PARTITION RANGE ALL             |                       |  1684 |       |    46   (0)| 00:00:01 |     1 |    17 |
  |  10 |       INDEX RANGE SCAN               | IDL_SUB_ID            |  1684 |       |    46   (0)| 00:00:01 |     1 |    17 |
  |  11 |     TABLE ACCESS BY LOCAL INDEX ROWID| INVOICE_DETAIL_LINE   |  1581 |   103K|   864   (0)| 00:00:11 |     1 |     1 |
  |  12 |    TABLE ACCESS FULL                 | INVOICE               |  6048 |   118K|   481   (1)| 00:00:06 |       |       |
  SQL_ID 5z1r29wc6514q
  SELECT INVOICE_ID,min(CHARGE_DATE),MAX(CHARGE_DATE),
  sum(TOTAL_EXCL_VAT),sum(case when instr(LEVEL2,:"SYS_B_0")>:"SYS_B_1"
  then SUM_QUANTITY else :"SYS_B_2" end) as KB from
  RATOR_CDR.INVOICE_DETAIL_LINE I  INNER JOIN SUBSCRIPTION S ON S.ID =
  I.SUBSCRIPTION_ID  inner join SERVICE S1 on S1.SUBSCRIPTION_ID=S.ID
  WHERE INVOICE_ID in (SELECT id from  RATOR.INVOICE WHERE
  invoice_number is  null) and  S1.PHONE_NUMBER=:1   and LEVEL1=:2  group
  by  INVOICE_ID
  Plan hash value: 1282779260
  | Id  | Operation                            | Name                  | Rows  | Bytes | Cost (%CPU)| Time     | Pstart| Pstop |
  PLAN_TABLE_OUTPUT
  |   0 | SELECT STATEMENT                     |                       |       |       |  1392 (100)|       |          |       |
  |   1 |  HASH GROUP BY                       |                       |   325 | 39000 |  1392   (1)| 00:00:17 |       |       |
  |   2 |   HASH JOIN                          |                       |   325 | 39000 |  1391   (1)| 00:00:17 |       |       |
  |   3 |    TABLE ACCESS FULL                 | INVOICE               |  5972 |   116K|   550   (1)| 00:00:07 |       |       |
  |   4 |    NESTED LOOPS                      |                       |       |       |            |       |          |       |
  |   5 |     NESTED LOOPS                     |                       |  1794 |   175K|   840   (0)| 00:00:11 |       |       |
  |   6 |      NESTED LOOPS                    |                       |     1 |    34 |     2   (0)| 00:00:01 |       |       |
  |   7 |       TABLE ACCESS BY INDEX ROWID    | SERVICE               |     1 |    23 |     2   (0)| 00:00:01 |       |       |
  |   8 |        INDEX RANGE SCAN              | SERVICE__PHONE_NUMBER |     1 |       |     1   (0)| 00:00:01 |       |       |
  |   9 |       INDEX UNIQUE SCAN              | SUBSCRIPTION__ID_PK   |     1 |    11 |     0   (0)|       |          |       |
  |  10 |      PARTITION RANGE ALL             |                       |  1836 |       |    48   (0)| 00:00:01 |     1 |    18 |
  |  11 |       INDEX RANGE SCAN               | IDL_SUB_ID            |  1836 |       |    48   (0)| 00:00:01 |     1 |    18 |
  |  12 |     TABLE ACCESS BY LOCAL INDEX ROWID| INVOICE_DETAIL_LINE   |  1722 |   110K|   838   (0)| 00:00:11 |     1 |     1 |
  ------------------------------------------------------------------------------------------------------------------------------also, Any suggestions to tune this query
  Thanks

  Harry wrote:
  11gr2, windows-64-bit
  I have one sql_id part of 3rd part application, need to tune it. how do plan on modifying 3 ^rd^ party application?

• Workitem execution from outlook - via citrix

  Hallo,
  we access SAP via Citrix and we want to execute workitems from outlook (by a decision task).
  I use the report RSWUWFML2, the user receives e-mail with corresponding attachments to execute the workitem, but I don't know, how to open them.
  Do I have to set up anything special?
  Thank you.
  Petra

  Hi PB,
  Are you not able to open/execute the workitem ?
  Does it give you error ?
  I have built scenarios of executing the workitem from Outlook,
  in order to do that, you need to run the report RSWUWFML2 in background, hence create a variant for the report with following checkboxes ticked,
  X  New workitems only.
  X  One message per workitem.
  X  Workitem Execution.
  After you run this report in background, you need to create a shortcut of your transaction to which your workitem should lead you.
  I mean, say on execution of workitem, you want the user to reach transaction ME54N, then create a shortcut for this transaction, by opening your client thru SAP, going to ME54N and clicking the shortcut button on the menu.
  Now, add this shortcut to your SAP GUI LogOnPad.
  Note* : you should have all the valid parameters in the shortcut.
  Thats all I did.
  Hope it helps.
  Reward if helpful.
  Citrix system wouldnt create an issue I suppose.
  Aditya

• Lotus notes integration for receiving workitems

  Hi All,
         i am getting some problem during getting the workitems in Lotus notes....
  what all should i need to check whether configuration side is ok.....
  and since which version of SAP is eligible to integration with lotus notes and outlook...?
  <removed by moderator - please refer to the [Rules of Engagement|https://wiki.sdn.sap.com/wiki/display/HOME/RulesofEngagement] regarding asking/offering points>
  Best Regards
  Dev
  Edited by: Mike Pokraka on Jul 17, 2008 1:13 PM

  yes they exist..........
  i have some doubts ........on this
  when ever i try to do auto forwording setting ..............
  its giving warning      "The forwarder and the recipient are identical"   and making internet address to  external address....
  and the variants are like in RSWUWFML2
  Job suffix              =        1            " What the siginficant for 2 ? 
  Tasks (blank = all)        =     TS00008267  "task number for decision step
  New Work items Only   X
  one msg per work item  X
  Workitem display          X
  Workitem execution      X
  Message Class for Subject       SWU_NOTIF
  Message Number for Subject        2
  Before Work Item Description    SWU_NOTIF_PROLOG1
  After Work Item Description     SWU_NOTIF_EPILOG2
  SAPLOGON_ID   =   SPACE
  Regards Dev

• Fm to fetch Resposible  Agent  for a perticular Workflow instance .

  Hi All,
  I need a FM  for the following req:
  I want Name of the agent , responsible for all workitem pending(Status :READY,STARTED) for a perticular Workflow instance.
  Input para : the Object key of the WF(must) .
  Thanks for yr help.
  Kakoli

  Hi Kakoli,
  Use the FM CRM_PARTNER_READ_OW to get the partners asssociated with a business transaction. This would give you the list of all partners including the responsible agent.
  Just pass the GUID, Ref Kind of the object and get the desired list.
  Select emp. responsible using partner function 00000014.
  For recipients of workitems use SAP_WAPI_WORKITEM_RECIPIENTS.
  Hope this helps!
  Regards,
  Saumya

• Error message when no atachment found for the workitem while approving ?

  Hi Folks,
  I need some help in this issue please.
  Requirement is, Agent needs to attach a document to work item and then approve. To achieve this, i have put code in for complete execute condition of the step.
  This is how it works, when agent attaches doccument and approves, it completes workitem and when there is no attachment, it does not complete work item but it does not stop agent by throwing anykind of error message.
  I need a error message when there is no atachment found for the workitem and agent tries to approve it. Please suggest how i can get this done ?
  Thanks a lot in advance..
  Prasu

  Hi
  There a couple of different ways to accomplish this.
  If your not using standard task/methods your able to extend your method. In here just check if a document is attached, display a message with the message statement, or a FM (e.g. TH_POPUP_TO_INFORM), and then call the workflow statement "<b>Exit_Cancelled</b>", by doing this the workitem will stay in the inbox, in status in process until the document is attached.
  If your using standard task / Methods, you need to check if a document is attached in the workflow logic, preferably in a condition. Now - if no document has been attached create a loop, and within this loop create a task, for displaying the message. A easy solution here could be a simple decision task with only one Decision, or if you are able to do some ABAP development, create a small method for displaying the message.
  In order to make sure that this task/message will popup immediately, create a container element e.g. "Last_Agent", the do a binding from the decision task to the workflow container ActualAgent -> Last_Agent.  Now you Last_Agent as the agent for you "Display Message" Task
  Regards
  Morten Nielsen

• Workitem execution flag by user

  Hello,
  Here is a scenario. We are sending workitems to multiple users for dual/parallel approval  ECR/ECO process through a mixture of workflow config, change types and signature strategies.  The problem is whenever an user has approved a workitem, the SAP Inbox doesn't show that particular workitem has been executed by that particular approver/user. 
  Example, User A gets a ECR/ECO approval work item in his inbox. He signs it and saves ok. Since there could be multiple approvers and not all have signed by then, the work item remains in his inbox. The next day/next week, there is another ECR/ECO approval work item  that comes to the inbox and the user (mostly engineers and not too SAP-savvy) is confused which one he has signed already since there is NO FLAG that accompanies the work item he has approved laready last day/week.
  So, the question is there any way to differentiate executed work items (flags in Inbox etc.) that still remains in the inbox due to incomplete status but has already been executed/approved by that particular user ??
  Thanks

  Hi Arghadip,
  Thank you for the reply but the truth is, we are at a time crunch in our project and the basic solution is already in place . So,  given the scenario we are in, when the WIs are executed/approved but nevertheless stayed in the inbox  due to dual approval process when other approvers are still waiting to sign it, how can an individual user know ( just by looking at the inbox) whether or not a particular WI has been signed by him/her? This is only for the ease of individual user, so that he/she doesn't have to click through the WIs to know if he has already signed it or not..
  Please let me know if you find anything