Permissions - authorizing minimac

Similar Messages

• Where we authorized the assigne work permits

  Dear Experts,
  how i can authorized the assigned work permits? while creating the maintenance order i assigned the work permit and saved it , now order status was created status. i select the condition as if permit not authorized dont release the order. now where i can authorized the permit , how the permit authorized person see the work permits? how he knows which order have the work permit? please explain me with example. and tell me the how many t.codes are available in standard sap relevant to workpermit.
  thanks & regards
  Jalu

  Dear Jalu,
  Are you using WCM to generate work permit?
  If so the authorisations related to WCM function codes are assigned in object WC_FCODE
  Regards
  Kannan

• S_GUI RISK TO AUTHORITY 60 UPLOAD FOR ALL USERS

  What's the problem to permit authority 60 in ACTVT at S_GUI object for all users?
  Best regards.

  There may be some programs which aren't sufficiently protected against data-uploads but I've never seen any risk in it. Interesting question!

• I get "computer is not authorized to play songs" after I have authorized it

  I get "computer is not authorized to play songs" after I have authorized it many times and every time I try to play one I get the same authorization window. All of the songs were bought a while ago under my old aol email which I have now updated to a new yahoo one. I have repaired disk permissions, authorized over and over as well as reinstalled itunes 7. The songs remain locked and I am not able to even burn a cd. I cant seem to find out a way to unlock those songs to play...Help

  My hunch is that you accidentally have two accounts and they both must be authorized on your computer. Fire up iTunes. Go to the Store menu and "Sign Out." Try to play one of the problem songs. A popup window with the account name will appear, asking you to authorize that account.

• Insufficient SQL database permissions for user 'Name: NT AUTHORITY\IUSR SID: S-1-5-17...

  Hi,
  I have a customized SharePoint page that takes user input data, validate some of the data, then writes the data to a SharePoint list. If an exception occurs, it will write the error to the ULS.
  All was working well in the test environments.
  However, recently we noticed that in the QA environment, when it's trying to write to ULS, it causes another issue:
  Insufficient SQL database permissions for user 'Name: NT AUTHORITY\IUSR SID: S-1-5-17 ImpersonationLevel: Impersonation' in database 'SP_F1_Config' on SQL Server instance 'SQL01'. Additional error information from SQL Server is included below. The EXECUTE
  permission was denied on the object 'proc_putObjectTVP', database 'SP_F1_Config', schema 'dbo'.
  I've traced through the code and found that it fails on the line:
      SPDiagnosticsServiceBase.GetLocal<LoggerError>();
  where LoggerError is the logger class inheritng SPDiagnosticsServiceBase
  I have also googled around today, but the most positive solution provided
  on this page was to manually modify SQL object permission, which I believe we should not do, and would not be supported by Microsoft.
  So the questions are:
  Why is AUTHORITY\IUSER used for SPDiagnosticsServiceBase.GetLocal()? Should that account actually be allowed to access SharePoint databases? (This is an intranet environment and using claim based/Windows authentication, no no anonymous access would be allowed
  anyway).
  I've checked the Application Pool account permissions in SQL, comparing the environment that works and the one that doesn't work, and the permissions/roles/schemas look identical on server and database level. Where else can I check?
  On the environment that works, I logged on as SharePoint administrator, created a new SharePoint Visual Web Part solution in Visual Studio, just to test writing to ULS. Then I press F5 in Visual Studio to debug it. It also has the same problem.
  It just seems like somehow the user's identity (or whatever the identity SharePoint required) was not passed to SPDiagnosticsServiceBase.
  Any suggestions, or even better, solutions would be really really much appreciated!

  Hi，
  Thanks for your sharing, it will be userful to the people who stuck with the same issue.
  Best regards
  Patrick Liang
  TechNet Community Support

• UPK11 - multi-user environment - manage author permissions - help

  We are configuring our UPK 11 multi-user environment.
  As we have it set, the "everyone" group has modify access to all folders.
  I would like to have a few admins have modify access to the system folder and everyone else be read only.
  Here's my dilemma -
  My admin profile is also a part of the everyone group - so if I set the permissions on the everyone group to read only, that effects the admin login as well.
  The documentation says that if I set up an author with explicit folder permissions, that they are not included in the everyone group, but everytime I try, they are added (irrevocably) to the everyone group before I can even assign an explicit permission.
  I tried to set the everyone group to read only and nearly hobbled my admin account.
  Can someone who has managed authors in a UPK 11 multii-user environment send out some tips?
  I'm not understanding the documentation well enough to make headway.
  [email protected]

  Hi Paul,
  I recently performed an implementation of UPK 11 at a client and had to show one of their employees how to administer the security surrounding profiles and authors.
  The group "Everyone" is default, and each person will belong to that group. It seems that when a person is assigned to another group/with author-specific permissions, it will override that which is set to the "Everyone" group.
  What I normally suggest (and implement) is that you modularise your security (separate the authors into their respective departments), and then create those departments as groups, and then assign permissions as required. Lets use an example - it assumes you are logged in as an admin user:
  I create 3 folders (where 4 and 5 are defaults):
  1. HR
  2. FIN
  3. CS
  4. Administrators
  5. Everyone
  Each author is defaulted to number 5, and all administrators should be included in group 4.
  Now the goal is to prevent HR and FIN from modifying CS, and vice-versa for the other two groups.
  You will see in your library that the root is defined as "/". Firstly, ensure that the Administrators group has Modify access to this folder (Administration --> Manage Groups --> Permissions). I think you need to click on edit, then click on the "Add" button (under permissions), and choose the root folder "/" - ensure it has modify - by default this value should already exist. This now ensures that the security is filtered down to all sub-ordinate folders that exist under the root folder - you do not need to manually assign "modify" permissions to each folder for the Administrator group, as you have already done so at root level.
  You will also notice that there is a "Members/Users" tab (can't remember off the top of my head which), and this allows you to select the profiles/authors that have Administrator group priviledges - ensure the correct users are selected.
  I normally leave the "Everyone" group as it is - do this for now, ensure everyone is included in it, and only modify after you have implemented and tested your security structure if needs be - normally the other group permissions override the "Everyone" group permissions.
  Next step is to assign department specific permissions to the 3 folders we created. Navigate to Administration --> Manage Groups, and ensure that you begin by editing the first department group (HR) - create the group if not already done, then edit (little pencil logo). You would like all HR users to have full modify access to their folder only, but they must not be able to mess around with the other two departments or the "System", "Getting started with UPK" and "/" folders. Under permissions, click on the Add button, and ensure that the folder "HR" has modify priviledge. Add the remaining 4 folders (CS, FIN, System, Getting started with UPK), and assign either Read or Read/View permission - this will ensure all other folders cannot be modified by HR users. Add the relevant HR users to the group under the "Members/Users" tab.
  Apply the same for FIN and CS respectively.
  Now you could get to a point where you may need cross-departmental access for a few users (FIN may need to access some HR content). I recommed that you do this on the user level, and not the group level, as you will limit who can access other departments. Navigate to Administration --> Manage Authors. Click on the specific user that will require access to another department. Edit his profile and under the permissions tab, ensure that he has required access to the other department folder (or sub-folders only) by adding and assigning the priveledge. This should ovveride the group security set for that specific department - but only for this user!
  Test by attempting to create content in an un-authorised folder (when logged in as a normal user). Test admin account by creating content in each folder. If it works - you will no longer need to modify "Everyone", as your permissions are defined under the other groups. I hope this all makes sense?
  Thats it in a nutshell really.
  I hope that this helps, and feel free to get back to me if you are still unsure?
  Regards,
  Greig

• PowerShell script to check permissions given to "NT Authority\All Authenticated Users" and..

  Hi there,
  On my SharePoint site - some places (Sites/Lists etc) have given permissions to "NT Authority\All Authenticated Users"
  We need to remove these permissions and instead give permissions to "Forest1\Domain Users" and "Forest1\Domain Users"
  PowerSHell script to do above will be appreciated.
  Thank you so much.

  Hello,
  In order to check whether "NT Authority\All Authenticated Users" are present in your site use this reference - Link
  Remove permission script reference - Link
  Finally grant permission script reference - link
  Kindly mark it as answer if it helps you.
  -Hatim

• HT1727 How do you grant permission for home sharing and authorizing?  My mac did home share, but now says, "The required directory was not found or has a permissions error", when I try to authorize.

  How do you grant permission for home sharing and authorizing?  My mac did home share, but now says, "The required directory was not found or has a permissions error", when I try to authorize.

  OK, I just got off of the phone with Apple and still no joy. They had me try a few things that did not work, then told me to Archive and Install, which did not either. Anyway, thanks for the additional help very note worthy, but still no joy. Also an email to iTunes Support took me here
  http://docs.info.apple.com/article.html?artnum=93061
  I have a Users/Shared folder but since the files we are talking about are invisible, I can see how it is structured.
  And by the way I tried this one
  http://discussions.apple.com/message.jspa?messageID=3577004#3577004
  and it did not work. However, when I install a fresh copy of Tiger on the external it did authorize the computer and was able to play the downloads. But coping the invisible file to my boot drive was not successful. But , like I said the music did play when I started up from the external. So I guess that may be my only solution, unless someone can tell what the correct directory is and where it for iTunes downloads.

• Replicating Permissions from Author to Publishers

  We have a package that contains nodes under /etc/forms/... and we use this to capture some data from the end user.  To allow the entering of data from the user, there's a node of primaryType rep:ACL at /etc/forms/mysite/rep:policy.  This has a child node of primaryType rep:GrantACE, and some other properties to allow anonymous users to input this data for us to capture.  This all works well in the Author environment.  However, I can't seem to replicate these permission nodes to the Publisher environments.
  Is there a way to replicate permissions from Author to Publisher?  All of the other nodes in the package seem to replicate correctly, just not the permissions.  I've tried creating a new package with only those permission nodes in them and installing on the Publisher directly, but I get the error:
  This node already exists: /etc/packages
  Can anyone explain the correct way of dealing with replicating permissions from the Author to Publishers?
  Thanks,
  K

  I just had a quick read of the docs for Closed User Groups and I'm not sure they fit the bill of what we're trying to achieve here.  At this stage, we're happy for anonymous users to enter the data on this form.  The documentation states:
  Closed User Groups (CUGs) are used to limit access to specific pages that reside within a published internet site. Such pages require the assigned members to login and provide security credentials.
  The issue is that we need to give anonymous users rights to this section, but can't seem to 'automate' (ie replicate) this permission from Author to Publishers even though it's clearly included in a package.  I don't want to go down the path of manually setting up permissions on each Publisher if it can be avoided - I'd really like to be able to have it set somewhere and replicate across, as per the rest of the JCR.
  Is this possible?
  Thanks,
  K

• First aide will not varify / repair permissions on grandmas minimac

  My grand mothers mac mimi seems to be running very slow so I tried to repair / varify permissions and would do only about 80% on the status bar where the spinning wheel of death would pop up and I would have to force quit which also took a lot of time. Any suggestions of what I should do next would be appreciated. The operating system is 10.4. A tech tool pro disk came with her apple care package but I read a while back in discussions that there has been a problem with compatibility with those apple care TTP disks and tiger so I am holding off using it until I can varify that it is ok to use.
  Thanks
  ron

  A tech tool pro disk came with her apple care package but I read a while back in discussions that there has been a problem with compatibility with those apple care TTP disks and tiger so I am holding off using it until I can varify that it is ok to use.
  Actually, a copy of Micromat's "Tech Tool Deluxe" should have come with your Mac mini's AppleCare Protection Plan box. Here is an article which details the incompatibility. If you have Tech Tool Deluxe 3.0.4 on your disk, then you should be good to go. Otherwise, I'd give AppleCare Support a call to get an updated CD.
  -Doug

• VCenter Single Sign-On Permissions Assignment for Members of Multiple AD Groups

  Hi all,
  I ran across an interesting issue whilst assigning permissions using Active Directory groups within vCenter.
  Environment
  1 vCenter Appliance managing 2 Datacenters (1 Datacenter with 2 Clusters, 1 Cluster with 2 Hosts, 1 Cluster with 4 Hosts, 1 Datacenter with 1 Cluster containing 1 host.) 
  vCenter has an SSO Identity Source configured using Active Directory (Integrated Windows Authentication).
  vCenter and all hosts are domain members of child1.parent.com.au
  The Active Directory Forest contains a parent domain, let's call it parent.com.au, and two child domains child1.parent.com.au and child2.parent.com.au.
  Although the Identity Source was configured for my child domain, using child domain credentials it added the parent domain and subsequently both child domains. Okay, so there are trusts, I'm okay with this. The interesting issue is yet to come.
  Two Active Directory Groups were added. Deployment Admins A and Deployment Admins B.
  Two vCenter Roles were created with similar names. VM Deployers A and VM Deployers B
  Deployment Admins A was assigned the Deployers A role to Cluster A (Cluster, VM Folders, Datastore Folders)
  Deployment Admins B was assigned the Deployers B role to Cluster B (Cluster, VM Folders, Datastore Folders)
  Note: No objects overlap. All hosts, vms and datastores are isolated to each cluster.
  So the next step is assign an child1 AD User to the Deployment Admins A group. As expected the user using credentials child1\user can connect to vCenter via the VI Client and see all the relevant objects. Great!
  So now I assign the same child1 AD user to the second AD group Deployment Admins B. Now we wait and nothing happens. The permissions don't change. The user logs out and logs back in using the same credentials and still the permissions don't change.
  So I remove the user from both AD groups and get them to log out and in and sure enough they can't.
  This time I assign the child1\user account the roles as set out previously. So child1\user account is assigned to both roles in place of each AD Group. The expected behaviour is observed. As I add the second permission set, the objects become visible within the VI client.
  Okay so now I remove the explicitly assigned permissions and reassign via the groups and this time I ask the user to log in via the UPN ([email protected]). Whoa! It works.
  So it seems that assigning permissions for the same user in multiple AD groups across multiple roles can only be achieved when the user uses a UPN login to the VI Client.
  Has anybody else found this to be the case?
  If so, were you able to fix it?

  Hello,
  I have found this to be the case and think it is more due to SSO than AD. If you look at how you login as the 'administrator' when you first configure SSO it is in effect using UPN. I would raise this as a case to VMware and make sure they are aware of the issue. There are some issues with SSO being worked each day.
  Best regards,
  Edward L. Haletky
  VMware Communities User Moderator, VMware vExpert 2009, 2010, 2011,2012,2013,2014
  Author of the books 'VMWare ESX and ESXi in the Enterprise: Planning Deployment Virtualization Servers', Copyright 2011 Pearson Education. 'VMware vSphere and Virtual Infrastructure Security: Securing the Virtual Environment', Copyright 2009 Pearson Education.
  Virtualization and Cloud Security Analyst: The Virtualization Practice, LLC -- vSphere Upgrade Saga -- Virtualization Security Round Table Podcast

• "Computer is no longer authorized" even though when I authorize it, it says it's ALREADY authorized

  I'm trying to sync my iPhone with my computer. It says, though that my computer is "no longer authorized for purchased items that are on this iPhone." So I go to Store->authorize, and then it says "this computer is already authorized." (see screenshots for details). But when I try to sync again, it says (again) that it's not authorized.
  I've tried:
  -deauthorizing all computers, and re-authorizing the one I want to use
  -removing the SC Info folder
  -logging out and back into iTunes
  I'd appreciate any feedback or help.
  I'm using the most up-to-date OSX Yosemite 10.10.2, with most up-to-date iTunes (12.1.0.50), and my phone is an iPhone 5s with iOS8.1.3.

  Hey CarlyR_,
  Thanks for the question. I understand you are experiencing issues related to iTunes Store authorization. The following resources may help to resolve these issues:
  iTunes repeatedly prompts to authorize computer to play iTunes Store purchases
  http://support.apple.com/kb/TS1389
  iTunes: Missing folder or incorrect permissions may prevent authorization
  http://support.apple.com/kb/TS1277
  Thanks,
  Matt M.

• Permissions for Windows Service on Server

  Post Author: bdimon
  CA Forum: Authentication
  I wrote a Windows service running as an Active Directory user. It cannot print on the Windows Server so I wrote a windows application to test the permissions. When a user with local admin rights runs the test application, it prints. He starts the program using the "Run As" option and enters the Active Directory user from the service, he gets the same error as the Windows Service gets. This must be permissions-based.
  When I installed this Windows Service on a staging server, everything was fine. However the staging server was not "secured" by the network team so the Active Directory user had Read/Execute permissions on the C: drive. I do not want to ask for these permissions on the production server's C: drive.
  The error is:
  System.Exception: Load report failed. ---> System.Runtime.InteropServices.COMException (0x800002AD): Error in File UNKNOWN.RPT:
  The request could not be submitted for background processing.
     at CrystalDecisions.ReportAppServer.ClientDoc.ReportClientDocumentClass.Open(Object& DocumentPath, Int32 Options)
     at CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.Open(Object& DocumentPath, Int32 Options)
     at CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.EnsureDocumentIsOpened()
     --- End of inner exception stack trace ---
     at CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.EnsureDocumentIsOpened()
     at CrystalDecisions.CrystalReports.Engine.ReportDocument.Load(String filename, OpenReportMethod openMethod, Int16 parentJob)
     at CrystalDecisions.CrystalReports.Engine.ReportDocument.Load(String filename)
     at WindowsApplication1.frmTestServerPrint.PrintCrystalReport(String& ErrorText, String ReportFileName, String PrinterLocation, Int32 PayTransStatusCode)

  Post Author: jgreg311
  CA Forum: Authentication
  I believe I'm having a similar problem, and was hoping to see if either you have found an answer to the problem or reactivate this thread in hopes someone will finally answer us.I'm creating reports using a windows service as well.  The report files are compiled into the DLL, and they are being exported to save them to disk.   The error is being generated when the report object is first accessed (which happens to be when attempting to set the Text property on a TextObject).  It works fine on my development machine.  I've installed the service on the production server using a Visual Studio 2005 Setup and Deployment project.  I added the 2005 Crystal merge module to the setup, so all necessary files should exist on the server.  The service is running as a domain user that has admin rights on the local machine, but we're still getting this error that seems, according to posts I've found online, to be a permissions issue.Here is the exception in its entirety:
  Exception Type:
  System.Exception
  Exception Message:
  Load report failed.
  Exception Stack Trace:
  at
  CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.EnsureDocumentIsOpened()
  at CrystalDecisions.CrystalReports.Engine.ReportDocument.Load(String
  filename, OpenReportMethod openMethod, Int16 parentJob) at
  CrystalDecisions.CrystalReports.Engine.ReportClass.Load(String
  reportName, OpenReportMethod openMethod, Int16 parentJob) at
  CrystalDecisions.CrystalReports.Engine.ReportDocument.EnsureLoadReport()
  at
  CrystalDecisions.CrystalReports.Engine.ReportDocument.get_ReportDefinition()
  at ...
  Inner Exception:
  System.Runtime.InteropServices.COMException (0x800002AD): Error in File
  UNKNOWN.RPT: The request could not be submitted for background
  processing. at
  CrystalDecisions.ReportAppServer.ClientDoc.ReportClientDocumentClass.Open(Object&
  DocumentPath, Int32 Options) at
  CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.Open(Object&
  DocumentPath, Int32 Options) at
  CrystalDecisions.ReportAppServer.ReportClientDocumentWrapper.EnsureDocumentIsOpened() Any help with this would be GREATLY appreciated.  Once again Crystal Reports are the only thing holding up an important project.

• Not Authorized to write to this folder - error msg.

  I have been trying to install updates for my Canon Dig Camera software [Applications/Canon Utilities - Canon Utilities is the folder I created during the initial install], it appears to go fine for the first few updates (image browser, Camera Window) and then suddenly stops and throws the error 'Not Authorized to Write to this Folder' and quits. Any suggestions?
  Folder Permissions:
  Ownership: you can R&W
  Owner: system (locked)
  Access: R & W
  Group: Admin
  Access: R&W
  Others: Read Only
  Thanks in advance for any help!

  Run utility disk and repair permission.
  p.s.
  are you computer admin?

• My macbook won't let me sync music or apps as it says my computer is not authorized, even though when I clicked to authorize it it says that it already is. how do i fix this?

  my macbook won't let me sync music or apps as it says my computer is not authorized, even though when I clicked to authorize it it says that it already is. can anybody tell me how i could fix this? iv already tried unarthorising the computer and re authorising it but it still doesnt seem to work

  Hey CarlyR_,
  Thanks for the question. I understand you are experiencing issues related to iTunes Store authorization. The following resources may help to resolve these issues:
  iTunes repeatedly prompts to authorize computer to play iTunes Store purchases
  http://support.apple.com/kb/TS1389
  iTunes: Missing folder or incorrect permissions may prevent authorization
  http://support.apple.com/kb/TS1277
  Thanks,
  Matt M.