Portal Group List/ User List/

Does Someone has exemple code to get the group list in java ?
I read that Group list is now in OID but no idea on how to get it

Guillaume,
your're right: groups are managed in OID, although there is a mirror table (WWSEC_GROUP$) in portal schema.
you have to use oracle.ldap.util (cf OID developer's guide), because I think there is nothing about geting groups in jpdk.
Patrick.

Similar Messages

Unable to export Groups and users list

Hi,
We have just upgrade BO from XIR2 to V3.0. We need to create an Excel file wich shows links between all users and all groups. Is it possible to query the repository ? Does it exist a functionality in the CMC interface to copy quickly all the links between all users and all groups into an Excel file ? We have to many links (1000 users and 40 groups) to do it manualy.

you can have this from the audit schema if you have your audit services is enabled for some specific servers.
then you can use query builder to query the audit schema about users, groups , reports and all the objects related to the business objects system.
dorp me some mail i will guide you to some good third party software which do all those things for you with easy and fast way,
good luck
Amr

Dn for Portal groups and users

Hi,
I have installed Oracle 9iAS release 2 on Windows NT. I need to modify the OID entries structure for Authentication.
Instead of the existing structure :
dc=xxx
- dc=yyyy
- cn=Users
- cn=Groups
I have a structure like this :
dc=xxx
- dc=yyyy
- cn=Users
- cn=InternetUsers
- cn=User1
- cn=User2
- cn=IntranetUsers
- cn=User3
- cn=User4
Can I configure Portal to use this structure/data for authentication,instead of the default DIT?
Thanks,
Shipra Surendra

yes you can do it...
go to the you
dc=xxx
-dc=yyy
--cn=oraclecontext
---cn=products
----cn=common
here replace the both dn for the user and group lookins.... and give same acl as to the new one as of default... that's it

Weblogic Portal 9.2 LDAP user listing resulting in NullPointer

Hi,
I have configured Weblogic Portal 9.2 to use an LDAPAuthenticator, when I use the Admin Console I can see the Novel Groups and Novel Users fine. When I select "User Management" menu item in the Admin tool where you set the Entitlements etc.. I get a null pointer exception but can see the Novel Groups fine. Is this a bug?
The exception starts with...
java.lang.NullPointerException
     at sun.text.UCharacterIterator.<init>(UCharacterIterator.java:46)
     at sun.text.UCharacterIterator.getInstance(UCharacterIterator.java:71)
     at sun.text.Normalizer.setText(Normalizer.java:1045)
     at java.text.CollationElementIterator.setText(CollationElementIterator.java:479)
     at java.text.RuleBasedCollator.compare(RuleBasedCollator.java:401)
     at java.text.Collator.compare(Collator.java:297)
     at java.util.Arrays.mergeSort(Arrays.java:1284)
     at java.util.Arrays.mergeSort(Arrays.java:1296)
     at java.util.Arrays.mergeSort(Arrays.java:1296)
     at java.util.Arrays.mergeSort(Arrays.java:1295)
     at java.util.Arrays.mergeSort(Arrays.java:1295)
     at java.util.Arrays.sort(Arrays.java:1223)
     at java.util.Collections.sort(Collections.java:159)
     at com.bea.p13n.usermgmt.query.UGQueryResult.reSort(UGQueryResult.java:132)
     at com.bea.p13n.usermgmt.query.UGQueryResult.<init>(UGQueryResult.java:48)
     at com.bea.p13n.usermgmt.query.internal.UserPagedResult.<init>(UserPagedResult.java:31)
     at com.bea.p13n.usermgmt.hierarchy.AtnGroupManager.queryUser(AtnGroupManager.java:231)
The strange thing is that firstly I can see the Novel Groups but not the users, and can see both Groups and Users in the normal administration console. This tells me that the LDAPAuthenticator is connecting up correctly.

This problem occured because the user filter entry was not filled in when putting in the ldap provider settings on the weblogic console. The portal admin console gives a null pointer when listing all users but when using the normal weblogic console it lists the Novel users alright.

I have two users listed in my admin group. How do I get rid of one?

I have two users listed in my admin group, but the undesired one doesn't show up in users and groups settings pane. How do I get rid of it?

Well, I found a link which showed me how to find the hidden/unwanted user and get rid of it (remove hidden users: Apple Support Communities). Now when I get info from the drive on my network I find this:
Is this normal? I would expect to find something other than (unknown).

Huge list of Groups in Users and Groups

I just upgraded SL to ML. I've been learning and setting things up.
I use the machine as a standard user and I have a "silent" admin user, too.
I was wondering if anyone has come across this? I went into System Preferences and noticed that there was a HUGE list of Groups. Some had "logical" names like admin server, etc. The list was super long. Some of the name were strange, like "umbg" I have no idea how they got there. And, searching here, and googling doesn't give me any info.
I don't know how all these groups got there. I did not add a single one.
I did make a mistake, because I deleted them all and then ML made my admin user a standard user and I could not unlock System Preferences, or use my password anywhere. ugh.
I tried finding a way to fix it, but I ended up just using Restore from disk utility. no worries, didn't have that much going on, yet.
Is it normal to have a list of groups that you did not create? Does ML just create groups in your Users and Groups list??
How do I take care of it if it happens again? Can some be deleted? If so, which ones? What are they for?
Thanks for any help with this.

Okay, I did do the restore.
And, the groups were not there.
So, first off, I opened TinkerToolSystem and went through all thes options. I found one: Show Groups in users and groups. I made sure it was not checked. Hopefully, it will not repopulate.
Then I remembered something. I did download Onyx. I was just looking for a way to change something simple. Mostly, I just looked around, didn't click on buttons, etc. But, Onyx may have change this setting (or me using Onyx inadvertently). Whichever, whatever, I've used TinkerToolSystem for years and it's always worked so well. I think I'm sticking with it and not install Onyx - which I had to go through the Gatekeeper exception deal... so it makes me nervous.
I'll post back if further issues with this.

How can I generate portal report that give list of iviews-roles-users

Hello,
I need to generate a portal report that will list all roles and iviews that assigned to them.
iviews can be assigned direclty or trough worksets/folders/pages.
Is there a way I can create such a list? Is it requires development? If so, Is anybody already deveopled such a report and can share the code?
Thanks
Ami

Hi Ami,
I cannot assure that this can be achived with portal application. Coz we are trying to get iviews n role info assigned to users. i.e. Portal object info.which is not stored in d server as it appears to end users. it will be stored as PCD ID based., not name based.
The requirement might need to develop Portal Applicaion at SAP NWDS but, i am not sure of displaying iviews. Also we can get the Role IDs of assigned role but not Role.
http://help.sap.com/javadocs/NW04S/current/se/com/sap/security/api/UMFactory.html
Please follow UME API to achive this.
IUserFactory userfactory = UMFactory.getUserFactory();
IRoleFactory rolefactory = UMFactory.getRoleFactory();
IRoleSearchFilter rolefltr = rolefactory.getRoleSearchFilter();
rolefltr.setMaxSearchResultSize(2000);
ISearchResult result = rolefactory.searchRoles(rolefltr);
while (result.hasNext())
String uniqueid = (String) result.next();
IRole role = rolefactory.getRole(uniqueid);
The same thing can be applied to get users info i.e. Portal users list.
Hope this helps you.
Good Luck!
Regards,
Shaila

Security API help needed / howto list user in group

Hi there,
i have tried all example programs of the hyperion security api. hard work to correct the errors in these scripts.
now i can create native groups an users and can create groups on groups or put users in native groups.
i have read the java doc / reference for the security api too but its not possible for me to list users of a group (group reference by name).
is there anybody who can help with a code sample to list users of a group like "testgroup" ?
something like (...getGroups(context,"testgroup")...) ??
Best Regards
Kai

Please don't cross-post. It is considered very rude to do that here:
http://forum.java.sun.com/thread.jspa?threadID=5233033&messageID=9953169#9953169

No user on lightdm user list and on user and groups(cinnamon)

I couldn't find my user(or any) at the lightdm user list(only see other there and can login with the account details)
and at the User and Groups.
I didn't had that problem when i installed arch on my laptop and didn't find any reference over the net,
did someone encountered this problem?
Thank you.

I don't really understand your issue, but do you mean you don't have your username to choose at login manager? Try type in the user name manually. Have you added a user after install? Like: $ sudo useradd -m -G wheel -s /bin/bash user
and the set password: $ sudo passwd user
Last edited by dockland (Yesterday 14:53:46)

Retrieving a portal users list once connected to Apex 1.6 ?

Hi,
We connect to Apex through a Portal SSO connexion. Once connected, we use the wwv_flow_ldap.is_member function to show or hide certain pages to some users. I now need to create a lov which would retrieve all users of a certain Portal group. Is there an api or a fonction to do that ?
Thanks

Yes there are several group functions and procedures provided in the wwsec_api. This link here
http://www.oracle.com/technology/products/ias/portal/html/plsqldoc/pldoc1014/index.html
explains more about them. Although the wwsec_api.person_info function returns a wwsec_person%ROWTYPE and there is a default_group column, not sure what this is used for but you could try using that?
Hope this helps.
Danny

Programmatically adding/deleting users to/from portal groups

I am using the following PDK api, to delete an user from a portal group (otp_sales).
I get the following error which doestn make sense. I tested the following api from a
script shown below. In my application, this gets called from a trigger, and fails
because it sees a ROLLBACK getting used in the API.
<<<<<<<<<<<<< delete_from_group.sql >>>>>>>>>>>>>>>>>>>>>>
DECLARE
BEGIN
moc.wwsec_api.delete_user_from_list (p_group_id
=>MOC.wwsec_API.GROUP_ID('OTP_SALES')
,p_member_person_id =>73);
END;
<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
SQL> @delete_from_group.sql
Input truncated to 1 characters
DECLARE
ERROR at line 1:
ORA-01086: savepoint 'DELETEUSERFROMLIST_SAVEPOINT' never established
ORA-06512: at "MOC.WWSEC_API", line 2467
ORA-06510: PL/SQL: unhandled user-defined exception
ORA-06512: at "MOC.WWCTX_SSO", line 849
ORA-06510: PL/SQL: unhandled user-defined exception
ORA-06512: at "MOC.WWCTX_SSO", line 669
ORA-06502: PL/SQL: numeric or value error
ORA-06512: at line 3
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Thanks
regards
-Ananth

We had the same problem and it turned out that deleting a portal user(delete_portal_user), removing a portal user from a list (delete_user_from_list) or updating a portal user, the "savepoint xxxx never established message" came up when there was no context set. If the procedure is called from within a portal page (or as user portal30) ,and the context is set and it works. The solution is to check to see if the context was set, and then set it if not.
if not portal30.wwctx_api_private.is_context_set then
portal30.wwctx_api_private.set_context(p_user_name => 'portal30');
end if;
Hope this helps
Tania

Questions on Shared and Group To Do lists

A few questions:
1) I am in a Group (domain group), that was assigned a task. So I had a To Do list for that group on the left, in my To Do list screen. Well, we aren't going to assign tasks to that group anymore. The To Do list is empty. How do I remove it from the list of To Do lists on the left?
2) I have a different group queue that had a task in it. Due to a problem with the workflow, I had to terminate the process behind it. But the task is still listed in the Group To Do list. I can't do anything with it. How do I get rid of it?
3) I shared my To Do list with a different user. That user can see my Shared Queue in their To Do list on the left, as one would expect. However, they never see any of the tasks in my To Do list. I thought they should be able to see what is in my queue. Any idea why they wouldn't?

Jasmin,
As for cleaning out those process, I already have, I think. The only option I see is "Terminate", which is what I did to start the problem in #2. I terminated the process, the task is still in the group queue. In the admin ui, the process shows as terminated. In the task search, the specific task shows as complete. However the Task card is in the Group to-do list. If you look at the Task Details on tat card, it says the process is terminated. However, there are not buttons available at all - you can't remove the task in any way I can find.
WorkspaceUser,
These groups are domain groups imported from active directory. So I don't control their membership.

Unable to find user list in Active Directory Authenticator

Hi all,
I am using weblogic 10.3 and want to configure ActiveDirectory Authenticator for my weblogic application. We have one managed srever under admin server . I have configured a Active Directory Authenticator named "ADAuthenticator" and made following changes as per the below values:
I set the control flag to "OPTIONAL" .
Security Realms-->myrealm-->Providers-->ADAuthenticator-->Provider Specific
UserName Attribute : ServiceBEA
Principal : ServiceBEA
Host : xxxxxx
User Search Scope : subtree
Group From Name Filter : (&(ServiceBEA=%g)(objectclass=group))
Credential : xxxxxx
Confirm Credential : xxxxxx
User From Name Filter : (&(ServiceBEA=%u)(objectclass=user))
Static Group Name Attribute : ServiceBEA
User Base DN : values provided as per requirement
Port : 389
User Object Class : user
Use Retrieved User Name as Principal : checked
Group Base DN : same values as per User Base DN
Static Group Object Class : group
Group Membership Searching : unlimited
Max Group Membership Search Level : 0
These are my AD settings. After doing this i click on save and then activate changes and then restarted the admin server.
But the problem is when i login to weblogic console to check the user list under "User and Group" i am unble to find any Active Directory users.
I don't know where i made the mistake. Can some make me out of this trouble.
Any help is highly appreciated.
Thanks in advance !

Hi Sean,
Actually we have already a Active Directory with username "ServiceBEA" in our windows server. So i used this "ServiceBEA" as UserName Attribute in weblogic console while creating a Active Directory Authenticator.
You mean to say that we should go for "sAMAccountName" or what? If that is the case then i have also tested with following values, but still no luck.
UserName Attribute : sAMAccountName
Principal : ServiceBEA
Host : xxxxxx
User Search Scope : subtree
Group From Name Filter : (&(sAMAccountName=%g)(objectclass=group))
Credential : xxxxxx
Confirm Credential : xxxxxx
User From Name Filter : (&(sAMAccountName=%u)(objectclass=user))
Static Group Name Attribute : sAMAccountName
User Base DN : values provided as per requirement
Port : 389
User Object Class : user
Use Retrieved User Name as Principal : checked
Group Base DN : same values as per User Base DN
Static Group Object Class : group
Group Membership Searching : unlimited
Max Group Membership Search Level : 0
Please advise what to be place in case of User Name Attribute.
Any help is highly appreciated.
Thanks in advance !

Send for review user list

In the Send for review user list, we have a list of users and
groups. Does anyone know anyway to edit this list to show the
Administrator group only? Our users often forget to choose the
Administrator group instead of a single Admin when sending their
drafts.

If you're not using the Publishing Server, Contribute does
need to write to an obfuscated directory on the server to keep
track of users and roles on the site.
I noticed a similar problem to the one you describe. And I
think the key is that the users have to have actually connected to
the site. It's not enough to just import the key, because
Contribute may not make a connection at that point. You can only be
sure that they'll show up if they browse to that site while
connected, for long enough that Contribute recognizes that it's
displaying a site on its connection key list.
The last part could be a hangup. In my experinece (OS X
Intel), it takes Contribute between 15 and 30 seconds to register
that it's on a site for which it has a connection. It might take
another 15-30 seconds to connect. So your users have to make sure
that they're viewing the site for long enough that all the buttons
at the top of the viewing pane show the right status.

User list synchronization and Unique userid questions

I am new to Oracle portal and LDAP and learning more and more about Portal every day.
Hi
I am using Oracle 9iAS portal 3.0.9 version. I have a requirement to integrate 3rd party LDAP with Oracle Portal Single Sign On. I have white paper on Configuring Oracle9iAS Portal for LDAP authentication. I have following questions
Paragraph from white paper (Background information):
When using LDAP authentication or any other external repository, for that matter- the list of users for authentication is held on the external repository. However, there is also a list of users held on the Login server, which is used to associate privileges to the user. Ideally, this list is maintained transparently and automatically. In fact, if a user account is created on LDAP and a user attempts to log in, the login will succeed, and an entry is automatically created on the login server for that user, after a successful login.
Questions:
1.     What privileges user will be granted when synchronization process create new portal user on login server automatically?
2.     Is it possible to customize whatever default privileges new portal user gets? If yes, how? Please provide some forum link or documentation or example.
Unique user Id scenario.
Our LDAP repository is setup for customers from different companies. We have requirement to integrate LDAP users with Oracle 9iAS portal 3.0.9 Single Sign On. I have two userid with same name on the LDAP from different company. For example userid jsmith from company A and jsmith from company B. Both user id do not exist on Portal Login Server. Both userids will be created automatically in Login server when LDAP and Portal synchronize user list.
1.     How oracle portal will handle such scenario when portal requires unique userid?
2.     Can I customize portal login screen? For example when they login they can provide userid, passwd and domain name. Where domain name could be company name.
Let me know if you need more information. Feel free to send direct e-mail also.

Dumlu,
For 1, you can have the user removed from OUL in OOB scenarios, but behind IP phones it's difficult since we won't know when the PC is offline from there. Only way to know that is when CAM receives a MAC-Notification of a new MAC address being learnt. In IB, you can use heartbeat timers to log them out
For 2, when a new MAC address is seen on the port, the MAC-Notification is sent out, and depending on your port profile the switchport will change or not. Check your port profile settings for more details on how you have it setup.
HTH,
Faisal

Portal Group List/ User List/

Similar Messages

Maybe you are looking for