Provide Rights to User Group through SDK

hello all,
Please help me to provide some rights or role to the User Group through using Business Objects SDK classes not using
setting in CMC.
please help me.
Thanks,
Prashant Joshi

Hi Prashant,
There are few samples available.
The JSP sample below shows setting advanced rights on a user group for root folder using Enterprise SDK.
https://boc.sdn.sap.com/node/18903
Another sample in set_Rights folder in sample collection at following link. Similar to above samples but it sets rights on a user not a user group and also shows how to set permissions on subfolders.
https://boc.sdn.sap.com/node/3211
Tks
Aasavari

Similar Messages

  • WL 6.1 LDAPRealm -- Can't see users, groups through console

    I'm having some troubles setting up an LDAPRealm correctly. I've been
    searching through the ng, and have read the cnfgsec.html doc closely
    several times, but must be missing something. Here is the situation:
    Running WLS 6.1 on Win2k. What I want to do is create an LDAPRealm for
    authentication. Right now I have Iplanet/Netscape Directory server
    6.01 with the default schema. I have set up an LDAPRealm through the
    console.
    ie Security -> Configure a new LDAP Realm V1 (Deprecated)... uses
    class weblogic.security.ldaprealmv1.LDAPRealm. Filled out the
    appropriate user groups entries:
    Group DN:ou=topologymanagement,o=netscaperoot
    Group Name Attribute: cn
    Uncheck Group is Context
    Group Username attribute:groupOfUniqueNames
    User Auth: bind
    User Password Attribute: userPassword
    User DN: ou=SpecialUsers
    Username attribute: uid
    Then created the appropriate caching realm. The resulting related
    changes to config.xml are as follows:
    <LDAPRealm AuthProtocol="simple"
    Credential="eNcRyPtEdPaSsWoRd"
    GroupDN="ou=topologymanagement,o=netscaperoot"
    GroupIsContext="false" GroupNameAttribute="ou"
    GroupUsernameAttribute="groupOfUniqueNames"
    LDAPURL="ldap://machineName:389"
    Name="MyLDAP Realm V1 (Deprecated)" Notes="hi"
    Principal="Directory Manager" UserDN="ou=SpecialUsers"
    UserNameAttribute="uid" UserPasswordAttribute="userPassword"/>
    Now, I bounce the weblogic server and it comes up no complaints. But
    when I go to the console, to Security->Groups (mydomain> Realms>
    wl_default_realm> Groups is the title), I do not see any of the groups
    listed in the Directory server. Same for the users. Checking the
    directory server logs, I see the following each time I start the
    console:
    [22/May/2002:15:34:12 -0400] conn=0 op=20 SRCH base="cn=config"
    scope=0 filter="(|(objectClass=*)(objectClass=ldapsubentry))"
    attrs="nsslapd-accesslog nsslapd-accesslog-list"
    [22/May/2002:15:34:12 -0400] conn=0 op=20 RESULT err=0 tag=101
    nentries=1 etime=0
    So it looks like it is connecting. Any suggestions, tips or pointers
    would be greatly appreciated. Does anybody have a doc of a simple walk
    through setting up LDAP realms? I've been unable to find a tutorial.
    I've read Weblogics docs, but I need an example to look at to put all
    the pieces together. Thanks for the help
    -k

    i got ldapv1 able to work with this following config.
    " <LDAPRealm AuthProtocol="simple" Credential="{3DES}nJfj4lzp6IM="
    GroupDN="o=abc.com,ou=Groups" GroupIsContext="false"
    GroupUsernameAttribute="uniquemember"
    LDAPURL="ldap://localhost:389"
    Name="MyLDAP Realm V1 (Deprecated)"
    Principal="uid=admin, ou=Administrators,ou=TopologyManagement,
    o=NetscapeRoot"
    UserAuthentication="bind" UserDN="o=abc.com,ou=people"
    UserNameAttribute="uid"/>
    thx
    kiran
    kj" <[email protected]> wrote in message
    news:[email protected]...
    I'm having some troubles setting up an LDAPRealm correctly. I've been
    searching through the ng, and have read the cnfgsec.html doc closely
    several times, but must be missing something. Here is the situation:
    Running WLS 6.1 on Win2k. What I want to do is create an LDAPRealm for
    authentication. Right now I have Iplanet/Netscape Directory server
    6.01 with the default schema. I have set up an LDAPRealm through the
    console.
    ie Security -> Configure a new LDAP Realm V1 (Deprecated)... uses
    class weblogic.security.ldaprealmv1.LDAPRealm. Filled out the
    appropriate user groups entries:
    Group DN:ou=topologymanagement,o=netscaperoot
    Group Name Attribute: cn
    Uncheck Group is Context
    Group Username attribute:groupOfUniqueNames
    User Auth: bind
    User Password Attribute: userPassword
    User DN: ou=SpecialUsers
    Username attribute: uid
    Then created the appropriate caching realm. The resulting related
    changes to config.xml are as follows:
    <LDAPRealm AuthProtocol="simple"
    Credential="eNcRyPtEdPaSsWoRd"
    GroupDN="ou=topologymanagement,o=netscaperoot"
    GroupIsContext="false" GroupNameAttribute="ou"
    GroupUsernameAttribute="groupOfUniqueNames"
    LDAPURL="ldap://machineName:389"
    Name="MyLDAP Realm V1 (Deprecated)" Notes="hi"
    Principal="Directory Manager" UserDN="ou=SpecialUsers"
    UserNameAttribute="uid" UserPasswordAttribute="userPassword"/>
    Now, I bounce the weblogic server and it comes up no complaints. But
    when I go to the console, to Security->Groups (mydomain> Realms>
    wl_default_realm> Groups is the title), I do not see any of the groups
    listed in the Directory server. Same for the users. Checking the
    directory server logs, I see the following each time I start the
    console:
    [22/May/2002:15:34:12 -0400] conn=0 op=20 SRCH base="cn=config"
    scope=0 filter="(|(objectClass=*)(objectClass=ldapsubentry))"
    attrs="nsslapd-accesslog nsslapd-accesslog-list"
    [22/May/2002:15:34:12 -0400] conn=0 op=20 RESULT err=0 tag=101
    nentries=1 etime=0
    So it looks like it is connecting. Any suggestions, tips or pointers
    would be greatly appreciated. Does anybody have a doc of a simple walk
    through setting up LDAP realms? I've been unable to find a tutorial.
    I've read Weblogics docs, but I need an example to look at to put all
    the pieces together. Thanks for the help
    -k

  • What is the Advantage of creation of user group through SUGR?

    Hello Masters,
    As per audit requirement I have maintained user groups for different sets of users through SUGR, but I am not getting except differenciating users (based on group), is there any other advantage? Can we assign role to a user group instead of assigning to list of users  or can we do any mass changes to an user group by giving only user group name.
    Regards,
    Nilutpal.

    Dear Neels,
    Apart from maintaining user group for Differnciation purpose you can also take the advantage on the following sectors:
    1. Follow the http://help.sap.com/saphelp_nw04/helpdata/en/ce/17533e5ff4d064e10000000a114084/content.htm link . From this you will come to know the use of user group in the authorisation area.
    2. User Groups also allow segregation of user maintenance, this is especially useful in a large organisation as you can control who your user admin team can maintain - an example would be giving a team leader the authority to change passwords for users in their team. 
    3. The authorization user group is used in conjunction with S_USER_GROUP authorization object. It allows to create security management authorization by user group. e.g. you can have a local security administrator only able to manage users in his groups, Help-Desk to reset password for all users except users in group SUPER, etc... 
    In case any issue, please feel free to reply.
    Regards,
    Nilutpal.

  • How to send a Workitem to User Group through WorkFlow

    Hi,
    I am developing a WorkFlow, in this i have an issue that i have to send a WorkItem to User Group on Certain condition. On Agent Assignment I want to assign User Group not a single or multiple Users.
    Could anyone resolve this issue. How can i resolve in WorkFlow.
    Harkesh Dang

    hi Harkesh,
    During agent assignment use Organizational unit -> All users in that organizational unit will receive workitem.
    Use Role -> All users having that role will receive workitem.
    Use Job/Position -> All users assigned to job/position ca receive workitem.
    Or else use expression -> Pass the user name through some selection criteria using a background method. Loop it. Create a task and workflow container and make sure that in properties tab multiline is checked.
    Hope it works.
    Regards,
    Raj

  • Unable to assign the user in user group through SQ03

    Hi All,
    When I tried to assign a  user to one user group from SQ03 the tick mark is disables can't assign the user.
    This is happening only to one of the employee only. Others i can mark tick.
    Please advice.
    Imran

    Hi
    Please check if the user has authorization to that query....
    For example if the user is a PA administrator & you are trying to assign this user to a user group which is Time Management ( Time Infosets), then the tick will be disabled.
    This case was encountered in our firm too.
    Please check & revert.
    Regards,
    Megha

  • Provisioning EP roles and user groups through CUP

    Hello experts,
    I am configuring EP provisioning through CUP.
    I created the EP connector as per the instructions in the config guide. But I have not added any parameter values or did any field mapping. I have imported necessary Portal roles.
    My EP connector is tested successful. But when I try to provision a role through CUP, I get this error:
    Error processing your request, Request no: 4 in stage : NEW_AS11.
    In the log it shows,  Field Mapping is not set for Application  (EP)
    But when I go to field mapping, I get this error for EP.
    Data retrieval from system XP1 failed : com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
    I could not find much documentation on fieldmapping.
    Are there any steps that I am missing for EP provisioning?
    Thanks in advance..
    Kee

    Thanks for your response.
    I have set up the parameters while setting up the EP connector in CUP.
    My role search URI is correct  but I am not sure about the last three parameters...
    ASSIGN_GROUPS:OC sapgroup
    ASSIGN_ROLES:OC saprole
    CHANGE_USER:OC sapuser
    CREATE_USER:OC sapuser
    CREATE_USER:password password
    DELETE_USER:OC sapuser
    LOCK_USER:OC sapuser
    LOCK_USER:islocked true
    RESET_PASSWORD:OC sapuser
    RESET_PASSWORD:password password
    ROLESEARCH_URI -  http://portalserver name:port number/UserRoleSearchForAEService_5_3/Config1?wsdl&style=document
    ROLESEARCH_URI_USERNAME -  same user Id I provided for the connector
    ROLESEARCH_URI_PASSWORD See your system administrator for the value.
    UNLOCK_USER:OC Sapuser
    UNLOCK_USER:islocked false
    ROLE_DATA_SOURCE -- ROLE.UME_ROLE_PERSISTENCE.un:   ??? What  is the role data source?? Is the value that is  provided is correct for the UME roles
    SCHEMA_ID SAPprincipals   ?? What does this Schema Id mean???
    USER_DATA_SOURCE  ????  Should we mention the user data source on the Portal system. In our case, it is the LDAP. But what would be the corresponding parameter value for LDAP.
    So when I go to field mapping to create one for EP, I get the following error:
    Data retrieval from system XP1 failed : com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
    Log Details:
    2009-03-03 14:28:48,055 [SAPEngine_Application_Thread[impl:3]_19] ERROR Error in gettting Field Def
    com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.sendSchemaRequest(SchemaRequest.java:131)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.getSchemaAttributes(SchemaRequest.java:142)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.getFieldDefinition(SchemaRequest.java:163)
         at com.virsa.ae.configuration.bo.FieldMappingBO.getSAPFieldDefList(FieldMappingBO.java:126)
         at com.virsa.ae.configuration.actions.LoadFieldMapAction.execute(LoadFieldMapAction.java:56)
         at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:271)
         at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:425)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.doWork(RequestDispatcherImpl.java:321)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:377)
         at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:455)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
         at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
         at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
         at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
         at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
         at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
         at java.security.AccessController.doPrivileged(Native Method)
         at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
         at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)
    Caused by: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.setContent(SOAPPartImpl.java:192)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPMessageImpl.<init>(SOAPMessageImpl.java:83)
         at com.sap.engine.services.webservices.jaxm.soap.MessageFactoryImpl.createMessage(MessageFactoryImpl.java:35)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.sendSchemaRequest(SchemaRequest.java:118)
         ... 25 more
    Caused by: com.sap.engine.lib.xml.parser.NestedSAXParserException: Fatal Error: com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)(:main:, row=5, col=18) -> com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)
         at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:139)
         at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:173)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.parseDocument(SOAPPartImpl.java:221)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.setContent(SOAPPartImpl.java:189)
         ... 28 more
    Caused by: com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)
         at com.sap.engine.lib.xml.parser.XMLParser.scanAttValue(XMLParser.java:1403)
         at com.sap.engine.lib.xml.parser.XMLParser.scanAttList(XMLParser.java:1577)
         at com.sap.engine.lib.xml.parser.XMLParser.scanElement(XMLParser.java:1712)
         at com.sap.engine.lib.xml.parser.XMLParser.scanContent(XMLParser.java:2442)
         at com.sap.engine.lib.xml.parser.XMLParser.scanElement(XMLParser.java:1843)
         at com.sap.engine.lib.xml.parser.XMLParser.scanContent(XMLParser.java:2442)
         at com.sap.engine.lib.xml.parser.XMLParser.scanElement(XMLParser.java:1843)
         at com.sap.engine.lib.xml.parser.XMLParser.scanContent(XMLParser.java:2442)
         at com.sap.engine.lib.xml.parser.XMLParser.scanElement(XMLParser.java:1843)
         at com.sap.engine.lib.xml.parser.XMLParser.scanDocument(XMLParser.java:2845)
         at com.sap.engine.lib.xml.parser.XMLParser.parse0(XMLParser.java:231)
         at com.sap.engine.lib.xml.parser.AbstractXMLParser.parseAndCatchException(AbstractXMLParser.java:145)
         at com.sap.engine.lib.xml.parser.AbstractXMLParser.parse(AbstractXMLParser.java:160)
         at com.sap.engine.lib.xml.parser.AbstractXMLParser.parse(AbstractXMLParser.java:261)
         at com.sap.engine.lib.xml.parser.Parser.parseWithoutSchemaValidationProcessing(Parser.java:280)
         at com.sap.engine.lib.xml.parser.Parser.parse(Parser.java:342)
         at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:101)
         ... 31 more
    2009-03-03 14:28:48,055 [SAPEngine_Application_Thread[impl:3]_19] ERROR com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
    com.virsa.ae.core.BOException: com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
         at com.virsa.ae.configuration.bo.FieldMappingBO.getSAPFieldDefList(FieldMappingBO.java:134)
         at com.virsa.ae.configuration.actions.LoadFieldMapAction.execute(LoadFieldMapAction.java:56)
         at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:271)
         at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:425)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.doWork(RequestDispatcherImpl.java:321)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:377)
         at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:455)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
         at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
         at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
         at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
         at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
         at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
         at java.security.AccessController.doPrivileged(Native Method)
         at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
         at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)
    Caused by: com.virsa.ae.service.ServiceException: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.sendSchemaRequest(SchemaRequest.java:131)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.getSchemaAttributes(SchemaRequest.java:142)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.getFieldDefinition(SchemaRequest.java:163)
         at com.virsa.ae.configuration.bo.FieldMappingBO.getSAPFieldDefList(FieldMappingBO.java:126)
         ... 22 more
    Caused by: com.sap.engine.services.webservices.jaxm.soap.accessor.NestedSOAPException: Unable to create message from source.
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.setContent(SOAPPartImpl.java:192)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPMessageImpl.<init>(SOAPMessageImpl.java:83)
         at com.sap.engine.services.webservices.jaxm.soap.MessageFactoryImpl.createMessage(MessageFactoryImpl.java:35)
         at com.virsa.ae.provisioning.idm.spml.request.SchemaRequest.sendSchemaRequest(SchemaRequest.java:118)
         ... 25 more
    Caused by: com.sap.engine.lib.xml.parser.NestedSAXParserException: Fatal Error: com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)(:main:, row=5, col=18) -> com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)
         at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:139)
         at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:173)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.parseDocument(SOAPPartImpl.java:221)
         at com.sap.engine.services.webservices.jaxm.soap.SOAPPartImpl.setContent(SOAPPartImpl.java:189)
         ... 28 more
    Caused by: com.sap.engine.lib.xml.parser.ParserException: XMLParser: Bad Attribute value: ' or " expected!(:main:, row:5, col:18)
    Appreciate your response.
    Thanks
    Kee

  • Re: How to create a User Group In EP through webdynpro coding

    Hi ,
    we have a requirement in which we want to create user group through webdynpro coding . and then we have to assign some user to this group .
    Pls Give step by step solution .
    Thanks in advance

    Hi Mayank,
    check the below blog to create group from webdynpro
    https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/d0eb5a9d-4256-2b10-79b9-bb0b797ccf73
    check 34th page for adding user to group.....
    have a try with 
    addUserToGroup (String uniqueIdOfUser, String uniqueIdOfGroup)
    https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/3641e490-0201-0010-c68f-e51221925714
    Koti Reddy

  • No user group created - Adhoc Query transaction error

    Hi there,
    Whenever I try to access the Adhoc Query transaction S_PH0_48000513 i get the error "No user group created". The required user groups are present in the system.
    Any idea why am I getting this error?
    Regards,
    Anjali.

    Hi Anjali,
    Pls check if the infoset of your query is assigned to the user group through SQ02-> Role/User gr. Assignment.
    Regards,
    Dilek

  • TFS Workitems:Bugs : I want ot select different lists, from the global list, for fields basd upon user group

    Hi,
    I am customizing the bug workitem workflow.
     I want ot select different lists, from the gllobal list, for fields basd upon user group
    I am aware that I can use "when" clauses in the allowed/suggested values of the field.
    My question is : how do I get the group(s) that the current user is in and how do use this to select different lists?

    Hi!
    You can not do this through standard way. You must to create the custom work item control:
    http://witcustomcontrols.codeplex.com/
    And get the user group through IIdentityManagementService.
    IIdentityManagementService IdentityService = _workItem.Store.TeamProjectCollection.GetService<IIdentityManagementService>();
    TeamFoundationIdentity _curid = null;
    _workItem.Store.TeamProjectCollection.GetAuthenticatedIdentity(out _curid);
    string _group = "Admin";
    var _gr = IdentityService.ReadIdentity(IdentitySearchFactor.AccountName, _group, MembershipQuery.Direct, ReadIdentityOptions.None);
    if (_gr.Members.Where(s => s.Identifier == _curid.Descriptor.Identifier).Count() > 0) return true;

  • Afaria User Group

    Hi
    I'm using User Groups in Afaria based in AD group.
    I have just one problem, I don't able to see devices list when I use user group?
    What can be happening?
    Regards,
    Lucas Araujo

    You're right.
    USER groups are not shown in the link window so you can't tell if a specific policy is linked to a given device/user pair. It will be but the UI doesn't show it.
    It's a pain to debug :-(
    BR
    Peter

  • SAP Query, user groups, revoking 'change' rights

    Hi,
    I have a problem regarding SAP Queries and revoking the change rights. This is what I have done:
    1. Created the new user group in SQ03
    2. Created the new InfoSet (SQ02), assigned it to the above UG (SQ03)
    3. Created the new user, assigned it to the UG in SQ03 and removed the Change checkbox (revoke change rights)
    4. Logged on as the new user
    5. Started SQ01, switched user group to the new one
    6. Created the new SAP query based on the new InfoSet, run the query
    As I understand the principles of user groups and queries, I wasn't supposed to be allowed to do the step 6 as the new user, as it was revoked the change rights. Why wasn't I stopped?
    I searched for reply in previous posts - everybody agrees on principles, but I didn't find explanation on why it doesn't work.
    Thanks in advance!
    KR,
    Igor

    The table AQGDBBN seems to display a mapping of User Group with use rindeed but the results are less than the actual assignment. And the mapping does not have the Z query usergroups that have users assigned in SQ03.
    Anything that I may be missing?
    Thanks,
    Kashif

  • User in 2 user groups always picks the rights from the group with least access -BOBJ 4.1 SP2

    We have BOBJ 4.1 SP2 installed.
    Lets say User1 is in a role1(User group) that has restricted access(no access to design menu for WEBI report in launchpad). Works fine when User1 logs into the launchpad. Cannot see the Design menu in Launchpad.
    User1 is also in another role2(user group) that has Design access for WEBI report (more like Power user access).
    Now when logged into a launch pad via SAP portal, and opening WEBI report on which role2 (user group) is applied that has Design access, user1 cannot see the Design menu of WEBI report. This is probably happening because User1 is also part of role1 that has restricted access. So it looks like it is always picking
    the role with least access and applying it no matter which report I am opening.
    I would expect the role to regulate the authorizations on the report. And one user could be a simple end user for one report and a power user for another report.
    Please advise if this is a Known issue or expected behavior. Is there a work around?
    Thank you very much
    Suman

    Hello Suman,
    Try avoid denial based security rights assignment instead you can specify the  unspecifed. As Greg said
    Denied + Granted = Denied
    Denied + Not Specified = Denied
    Granted + Not Specified = Granted.
    You should not deny rights for HR End User usergroup, Instead make them as unspecified. If you do so the whenever the user part of both the groups , your security rights aggregation would be
    Granted + Not Specified = Granted.
    Make sure you follow the approach as above.  You can refer the blog below for how to structure the folder, report and User group hierarchy and effective maintenance of security
    BusinessObjects Administration - Content Management Plan
    Regards
    Mani

  • Is it possible to map a Sponsor Group in Cisco ISE to a user group in Active Directory, through a RADIUS server?

    Hi!!
    We are working on a mapping between a Sponsor Group in Cisco ISE and a user group in Active Directory....but the client wants the mapping to be through a RADIUS SERVER, for avoiding ISE querying directly the Active Directory.
    I know it is possible to use a RADIUS SERVER as an external identity source for ISE.....but, is it possible to use this RADIUS SERVER for this sponsor group handling?
    Thanks and regards!!

    Yes It is possible to map Sponser group to user group in AD and if you want to know how to do please open the below link and go to Mapping Active Directory Groups to Sponsor Groups heading.
    http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_guest_pol.html#wp1096365

  • How can we provide access/provide permissions to a user/group for group of folders at single step??

    Hi Nico, Thaks you so much for your reply,, Can you please advice or give me some steps to write script pelase? Regards,Kareem

    Hi All, How can we provide access/provide permissions to a user/group for group of folders  at single step?? I can able to provide access for a single folder at a time. I want provide access to a list of  folders( more than 30 ..) at single step?? Regards,Kareem

  • Has anyone found a solution to sending mail to groups in Mavericks? I've been given 2 approaches - 1 to type user name group into address and the other to go to address book and right click on group. Neither are satisfactory. Does anyone have a solution?

    Has anyone found a solution to sending mail to Groups in Mavericks? I've been given two solutions - neither are satisfactory. One is to type name of group into address line, the other is to go to address book and right click on group.

    thanks a lot for your kind help... saved me a lot of time and effort, could not believe it at first that the process is so simple but once i followed the steps it worked fine. appreciate your help.

Maybe you are looking for

  • Problem with JTree and memory usage

    I have problem with the JTree when memory usage is over the phisical memory( I have 512MB). I use JTree to display very large data about structure organization of big company. It is working fine until memory usage is over the phisical memory - then s

  • How do i transfer all of my itunes from one computer to another

    how do i manage to transfer all of my itunes from one  computer to another?

  • Authentication failed, ADFFacesContext had not been properly released

    hi, I setup Login page through ADF security wizard in jdev 10.1.3.2 and set error page to be the same Login page. The rest of login process is same as in SRDemo: index page redirects to Welcome page, user press Start button etc. But if the user enter

  • TV episodes marked as movies

    As a bit of background, I have two drives one with my media on and the other with a backup of said media. The backup is simply a copy which uses the modified date to determine if a newer version needs to be copied. The problem I have is that when I a

  • Boot up from other node's boot disk

    Hi,at the moment I got problem to boot up one of two nodes-cluster, because its boot disk seems to be damaged. Is it possible to boot up from other node's boot disk? If yes,how to do it? If not,are there any ideas,beside replacing the damaged boot di