OBIEE-OID User Priviledges

Similar Messages

• Need help in OID user Trusted recon

  Hi all,
  I am using oim9.1.0.1,oid 9.0.4.7.
  When i run the OID user trusted recon it is bringing users based on pagesize.The problem is if i set the page size as 100 then it brought 98 users where as i have 30000 users in my OID.When i set the page size to 1000 it brought 998 users and ended the process.what i didn't understand is why it is not looping again and not bringing all my 30000 records.
  regards,
  Rajesh.

  Hi All,
  I ran the OID trusted recon which brought most of my records from OID.Now i got a requirement to rerun the scheduler one more time,but this time it is not picking the records which it already brought. I changed the recontimestamp to 0 but then also it didn't brought all the records.
  Can anyone help me of how i can rerun the trusted recon again which will bring all my records.
  Regards,
  Rajesh

• WLS not able to login with OID user

  Hi
  I have installed WLS 10.3.3 and had configured a new security realm which had OID as the authenticator . Set the details for the provider (OID) and updated , restarted the server . It was working fine till yesterday and I verified this by logging in to the WLS console with the OID user .
  But now out of nowhere the login for OID users have started failing for the applications that are running on WLS . When tested the login for WLS console with the same OID user that is failing as well .
  Not sure what to trace and how to figure out what is happening . Have verified that OID is working fine and this was done by hooking up OID to a standalone application and logging in with the OID users to that app.
  Any help / pointers would be of great help .
  Thanks
  Srinath
  Edited by: Srinath Menon on Nov 24, 2010 9:31 AM

  Try enabling sap* user again and once its enabled, use the user to provide yourself the necessary access.
  For enabling sap* user, follow <a href="http://help.sap.com/saphelp_nw04s/helpdata/en/3a/4a0640d7b28f5ce10000000a155106/frameset.htm">Enabling SAP* user</a>
  Pradeep

• Mapping db users to OID users

  We have a handful of database users accounts, each of which are shared by multiple OID users, depending upon the rights we want those OID users to have in the database.
  The problem we have is tracking down the individual user in OID, and matching them up to the actual db login used to access the system.
  Has anyone else implemented something similar, and come across a solution for this?
  -Chuck

  If I log into an application, and then try to look for the user in the view you mentioned, I do not see them. In fact, I get 0 results returned:
  SQL> select username from v$session;
  USERNAME
  DBSNMP
  FORBESC
  DBSNMP
  NP_TELE_EMP_USER
  DBSNMP
  34 rows selected.
  SQL> select * from dba_audit_trail;
  no rows selected
  Is there some setup that is necessary in order to get this view to work?
  Thanks for the help
  -Chuck

• Unlocking OID User Through OIM

  Hi all,
  I am testing an OID User Process task in OIM which can be run on a user's OIM account and unlock a locked user in OID
  However, I am getting the following error after executing the task:
  ERROR 11:54:51,375, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ERROR in OID:com.thortech.xl.integration.OID.util.tcUtilLDAPOperations:modifyAttributesReplace(S,A) NamingExceptionUnable to add attributes of the object
  ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - [LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
  ERROR 11:54:51,376, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ERROR in com.thortech.xl.integration.OID.tcUtilOIDUserOperations:modifyUser(S,S,S,S) NamingExceptionError while connecting to target
  ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,377, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.util.tcUtilLDAPOperationsNamingException[LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
  ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
  ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.util.tcUtilLDAPOperationsNamingException[LDAP: error code 53 - Account Policy Error :9051: GSL_ACCOUNTUNLOCK_EXCP : Only Modify-add allowed on orclpwdaccountunlock attribute. Modify-delete and Modify-replace are not allowed.
  ERROR 11:54:51,378, RMICallHandler-113 XL_INTG.OID - ====================================================
  DEBUG 11:54:51,378, RMICallHandler-113 XL_INTG.OID - com.thortech.xl.integration.OID.tcUtilOIDUserOperations:modifyUser(S,S,S,S) Returning with code: INVALID_NAMING_ERROR
  I am using the adapter adpOIDMODIFYUSER to update the orclpwdaccountunlock attribute to 1.
  Not sure if this is a correct method. Any ideas would be appreciated :)

  Bbagaria: OIDDAS is not enabled in our environment. However, I can unlock the user in OID using ldapmodify
  ldapmodify -p 636 -h **** -D "cn=orcladmin" -w *** -v -f /home/oracle/unlock.ldif
  dn: cn=JENZO,ou=***,dc=***,dc=***,dc=***
  changetype: modify
  add: orclpwdaccountunlock
  orclpwdaccountunlock: 1
  Rajiv: I did try that. Same results unfortunately.

• OIM Disable OID Users Error

  Hello
  WHen disabling users in OIM, the connected OID resource is not disabled and I receive the below error in the log. Is there a status definition or lookup that needs to be filled in for this to complete?
  2012-06-28 11:30:10,048 INFO [STDOUT] Target Class = com.thortech.xl.integration.OID.tcUtilOIDUserOperations
  2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] ====================================================
  2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] com.thortech.xl.integration.OID.tcUtilOIDUserOperationsMapping for ldapdisabled missing in the lookup definition
  2012-06-28 11:30:10,142 ERROR [XL_INTG.OID] ====================================================
  Thanks
  Nick

  Have you changed your OID user process task mappings for the Enable User and Disable User tasks? By default these set AttrName to "UserEnabled" and "UserDisabled", both of which map in lookup AttrName.Prov.Map.OID to attribute orclIsEnabled.
  Your error messages seems to suggest your Disable User process task mapping for OID User has been set to have AttrName set to ldapdisabled, and this attribute does not have a mapping defined in AttrName.Prov.Map.OID.

• Creating an OID user using Java

  Does anyone have a working example of how to create an OID User using Java? I know how to create a user OBJECT but have yet to find any documentation on how to actually create a NEW OID USER.
  Thanks!
  Teri Kemple
  TUSC

  Teri have you found any answer to this question of yours?
  I am looking for the same thing.

• Checking user priviledges

  what's the query to check some user priviledges?

  Arif, your question is a little vague. Try the following article to find information related to user object privileges and to user system privileges:
  How do I find out which users have the rights, or privileges, to access a given object ? http://www.jlcomp.demon.co.uk/faq/privileges.html
  HTH -- Mark D Powell --

• 9i forms/sso - at runtime can I display the current oid user on the form

  Hi ,
  Is it possible programically retrieve the current oid user name so that I can display this name on the form at run time.
  I am also wanting to use the oid user name as a parameter to call a stored procedure inside the form,
  is there a built-in to do this ?
  Thanks
  sd.

  Hi,
  guess that
  declare
  currentuser Varchar2(100);
  begin
  currentuser := get_application_property(sso_userid);
  end;
  does a better job.
  Frank

• Error while "OID USER TARGET RECON"....

  hi,
  Iam new to OIM and i would really appreciate your help.
  Everytime i run the OID USER TARGET RECON i keep getting this annoying error which actually prints in the log but it doesnt stop the process (i beleive). The updated data in the OID is reflecting the process form but for some reason this error is coming. please help!
  DEBUG QuartzWorkerThread-3 XELLERATE.APIS - Class/Method: tcLookupOperationsBean
  */getLookupValuesFilteredData entered.*
  DEBUG QuartzWorkerThread-3 XELLERATE.APIS - Class/Method: tcLookupOperationsBean
  */getLookupValuesFilteredData left.*
  INFO QuartzWorkerThread-3 XELLERATE.JAVACLIENT - System Event Handler: Validatin
  g the name of the Organization
  ERROR QuartzWorkerThread-3 XELLERATE.DATABASE - Class/Method: tcDataBase/writeSt
  atement encounter some problems: ORA-02291: integrity constraint (OIMUSER.FK_ACT
  _ACT) violated - parent key not found*
  java.sql.SQLIntegrityConstraintViolationException: ORA-02291: integrity constrai
  nt (OIMUSER.FK_ACT_ACT) violated - parent key not found
  at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.ja
  va:85)
  at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:1
  *33)*
  at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java
  *:206)*
  at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:455)
  at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:413)
  at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1034)
  at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.
  Thanks,
  Thilak

  hi,
  Thanks for your timely reply,
  The users are created in OIM and it is already provisioned to OID(*User is in both OIM and OID*), but we update the fields in OID through a script and try to bring the updated values to OIM process form by target recon. When i run the recon i get this error in the log but the values are getting updated successfully.
  Thanks
  Thilak

• Disable OID User account after 90 days of inactivity - OIM

  Hello there,
  I have a requirement where I have to disable a users account if he/she has not logged in since last 90 days into our environment(OID). The users are authenticated via OAM when they are logging in. Does anybody has any idea which attribute in which object class in OID needs to be checked for the last login attempt made by the user and what is the datatype of the same? Is it a date that I can compare after making a initial LDAP context to OID and pointing to each single user?
  Really need a solution for this. Please respond.
  Many Thanks,
  - oidm.

  Check the schema description at:
  http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b25348/schema.htm#CFHCGFCC
  You create a code that runs daily, check for the last login dates and, if is older than 90 days, you disable the OID user.

• Connecting Sysbase database from OID user

  Does OID allow to connect to sybase or any other relational database using OID user/ Enterprise User?. I will appreciate if someone can point me to the right link or provide me some step by step procedure.
  I have setup the heterogenous connectivity and I can connect to Sybase database using database link etc.
  Thanks
  Suhail

  can u please let me know the steps of how to connect the heterogeneous connectivity

• OID User not able to login to owc_discussion

  Hi,
  I have a webcenter content domain (11.1.1.6) with both WCC and owc_discussion up. I have configured a OID authenticator (SUFFICIENT) in my security realm as the first authenticator. I can create users/groups in OID and use them to login to UCM (/cs) or any deployed application. However, i cannot find my users in owc_discussion. Do we have to do the setup as mentioned in http://george.maggessy.com/2009/08/oracle-discussions-configuration.html or am i missing something here.
  My assumption was: any OID user will be let inside owc_discussion just as they log into /cs.
  Thanks
  Shidharth

  Hi,
  In your smoeac transaction you have to suscribe to the object :
  Authorization
  Authorization1
  Authorization 2
  User (USERNAME)
  If you've these it might be working,
  I had the same error message but it's not the id or the password like error message said it's just that customizing for authorization are not replicate as well
  Regards
  Edited by: Julien DESGEORGES on Jan 12, 2009 2:25 PM

• OID users , users to group mapping took off

  Hi,
  I do not know how and why the OID users, user to group mapping was taken. I am not able get anything from logs.
  Can anyone help?
  Thanks a lot!!!

  Hi,
  I do not know how and why the OID users, user to group mapping was taken. I am not able get anything from logs.
  Can anyone help?
  Thanks a lot!!!

• Help to select OID user from Report

  I have a Report deployed on a 10.1.2 report server and using OID and SSO.
  Report runs ok with SSOCONN parameter via SSO login screen.
  I need to use the OID user in my reports queries.
  To check what sys_context('USERENV',..) parameter I need, I created a simple report that returns all USERENV parameters value including EXTERNAL_NAME and run it to see what userenv parameter is the right one to get the OID user.
  But none of them has my OID username in it !
  Anyone who can tell me how I can get my OID user from a select in Report.
  Thanks & Regards,
  Jean-Marc

  Just an update :
  Solution found via SSR on Metalink.
  In fact, SYS_CONTEXT with CLIENT_IDENTIFIER works. It returns the OID/SSO user.
  The probem was I was testing with Reports and that Report server on Linux has a bug and needs a patch available on metalink:- 5193731.
  JM