Question on LDAPSync Post Enable Provision Users to LDAP task

Hi All,
Can you please clarify my doubt on
I created a user "testaccount" in OIM and via ldapsync, it gets created in OID.
Now, I manaully deleted that user "testaccount" in OID and wants to recreate the user account again in OID. Will this schedule task "LDAPSync Post Enable Provision Users to LDAP" solve my purpose or not?
Regards,
Sunny

I would not expect the account to be re-created. As far as OIM concerned it is in OID, as it was reconciled from OID, and OIM has a record of it's DN and GUID. If OIM later sees the account as disappeared it just treats this as an operation error, and does not update itself to say the account is deleted.
Have you run the LDAP Sync user deletion reconciliation job? If so it should have deleted the user in OIM. You can then create a new user with the same name (but different logon unless you set the system property to allow logon re-use), to create a new OID account.
If you do want to create the same user in OID without deleting and recreating the OIM user, via this post-create scheduled it is possible, but involves messing about with the OIM user record in the database to cleat out its old DN and GUID. In that way OIM thinks the user is not in LDAP and should try to recreate.

Similar Messages

  • Best way to provision users in LDAP on a schedule?

    Hi,
    I am trying to work out the best way to automatically create users in an LDAP resource. the sceanrio is as follows:
    I have an authorititive directory from which I wish to pull users into IDM which is under my control. I have another directory which I want to provision users to. It does not have a changelog - I'm not sure that active synch will work? This directory is not under my control so I can't simply add one.
    I want to update the list of IDM users nightly from the authorititive directory then push the changes to the other directory.
    I read on here about per-account workflows, I have 10k accounts at present, but this is likely to grow quickly, so I guess that has to be ruled out on performance grounds?
    Can anyone suggest a way to create users in the remote directory. could I have a workflow which iterates through all the IDM users and provisions an account if it doesn't exist? how would I configure and schedule this?
    Thanks for your help,
    Toby.
    Edited by: Toby.ORourke on Jan 7, 2008 1:48 PM

    You stated, "This directory is not under my control so I can't simply add one", can you expand on this? Do you not have an account to connect to this directory? Do you not have a resource adaptor for this directory? If you do not have a resource adaptor you will have difficulties connecting via sim, it is not impossible. You can connect to and ldap directory using the jndi api in java.
    Your questions are of a larger design question that I feel might be out of context for this forum based on business rules we cannot answer.

  • Problem with activesync provisioning user from  ldap to red hat

    hello,
    i am using activesync to provision the user from ldap to red hat linux . i am getting the following error message
    An error occurred adding user '#########' to resource 'Red Hat Linux'.
    Script failed waiting for " PASSWORD:" in response "passwd: Only one user name may be specified.
    _,)#+(:"
    Script processor timed out with nothing to read and the following unprocessed text: "passwd: Only one user name may be specified.
    _,)#+(:".
    when to try to assign redhat resource to a user from the idm the user is getting provisioned to redhat successfully .active sync form is working for all the other resource except the redhat.
    can anyone give me solution for the above problem
    thanks in advance.

    Have you set the xhost as ROOT (xhost +hostname), and then as the ORACLE user type "export DISPLAY:0.0" (without the quotes of course) ? This needs to be done prior to running the installer. Try this site for further information - http://www.puschitz.com/OracleOnLinux.shtml

  • Problem when Provisioning Users using EBS Connector (Enable SSO)

    Hi expert,
    We do provisioning users to EBS through EBS connector Version 9.1.0.4.0
    Normally, we can provisioning users if we set value of SSO enable = NO,
    but by the scope of this project,
    We have to let EBS using Single sign-on by authentication from OID
    so, we must set value of SSO enable = YES, this makes us cannot provisioning user to EBS.
    the error log shown that it's about password but we do enter password already.
    Thank,
    Noraset
    #### EBS IT Resource ####
    SSO Enabled      : Yes
    SSO IT Resource : OID Users
    SSO Identifier      : orclGUID
    SSO Login Attribute :      uid
    #### Error LOG ####
    Running InitUtil
    Running CreateUser
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <================= Start Stack Trace =======================>
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <oracle.iam.connectors.ebs.usermgmt.integration.EBSUserManagementHelper : createEBSUser>
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <Exception Occured>
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <Description : ORA-20001: APP-FND-02600: Unable to create user BT005 due to the following reason(s):
    Password must contain at least one letter and at least one number..
    ORA-06512: at "APPS.APP_EXCEPTION", line 72
    ORA-06512: at "APPS.FND_USER_PKG", line 869
    ORA-06512: at "APPS.FND_USER_PKG", line 915
    ORA-06512: at "APPS.FND_USER_PKG", line 1034
    ORA-06512: at "APPS.OIM_FND_USER_PKG", line 40
    ORA-06512: at line 1
    >
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <java.sql.SQLException: ORA-20001: APP-FND-02600: Unable to create user BT005 due to the following reason(s):
    Password must contain at least one letter and at least one number..
    ORA-06512: at "APPS.APP_EXCEPTION", line 72
    ORA-06512: at "APPS.FND_USER_PKG", line 869
    ORA-06512: at "APPS.FND_USER_PKG", line 915
    ORA-06512: at "APPS.FND_USER_PKG", line 1034
    ORA-06512: at "APPS.OIM_FND_USER_PKG", line 40
    ORA-06512: at line 1
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:457)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:405)
    at oracle.jdbc.driver.T4C8Oall.processError(T4C8Oall.java:889)
    at oracle.jdbc.driver.T4CTTIfun.receive(T4CTTIfun.java:476)
    at oracle.jdbc.driver.T4CTTIfun.doRPC(T4CTTIfun.java:204)
    at oracle.jdbc.driver.T4C8Oall.doOALL(T4C8Oall.java:540)
    at oracle.jdbc.driver.T4CCallableStatement.doOall8(T4CCallableStatement.java:213)
    at oracle.jdbc.driver.T4CCallableStatement.executeForRows(T4CCallableStatement.java:1075)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1466)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3752)
    at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3887)
    at oracle.jdbc.driver.OracleCallableStatement.executeUpdate(OracleCallableStatement.java:9323)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
    at oracle.iam.connectors.ebs.usermgmt.integration.EBSUserManagementHelper.createEBSUser(Unknown Source)
    at oracle.iam.connectors.ebs.usermgmt.integration.EBSUserManagement.createUserHRF(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:611)
    at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpEBSCREATEUSERHRMS.CREATEUSER(adpEBSCREATEUSERHRMS.java:269)
    at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpEBSCREATEUSERHRMS.implementation(adpEBSCREATEUSERHRMS.java:105)
    at com.thortech.xl.client.events.tcBaseEvent.run(tcBaseEvent.java:196)
    at com.thortech.xl.dataobj.tcDataObj.runEvent(tcDataObj.java:2492)
    at com.thortech.xl.dataobj.tcScheduleItem.runMilestoneEvent(tcScheduleItem.java:2917)
    at com.thortech.xl.dataobj.tcScheduleItem.eventPostInsert(tcScheduleItem.java:547)
    at com.thortech.xl.dataobj.tcDataObj.insert(tcDataObj.java:602)
    at com.thortech.xl.dataobj.tcDataObj.save(tcDataObj.java:474)
    at com.thortech.xl.dataobj.tcORC.insertNonConditionalMilestones(tcORC.java:844)
    at com.thortech.xl.dataobj.tcORC.completeSystemValidationMilestone(tcORC.java:1159)
    at com.thortech.xl.dataobj.tcOrderItemInfo.completeCarrierBaseMilestone(tcOrderItemInfo.java:735)
    at com.thortech.xl.dataobj.tcOrderItemInfo.eventPostInsert(tcOrderItemInfo.java:171)
    at com.thortech.xl.dataobj.tcUDProcess.eventPostInsert(tcUDProcess.java:235)
    at com.thortech.xl.dataobj.tcDataObj.insert(tcDataObj.java:602)
    at com.thortech.xl.dataobj.tcDataObj.save(tcDataObj.java:474)
    at com.thortech.xl.dataobj.tcTableDataObj.save(tcTableDataObj.java:2906)
    at com.thortech.xl.ejb.beansimpl.tcFormInstanceOperationsBean.setProcessFormData(tcFormInstanceOperationsBean.java:710)
    at com.thortech.xl.ejb.beansimpl.tcFormInstanceOperationsBean.setProcessFormData(tcFormInstanceOperationsBean.java:425)
    at Thor.API.Operations.tcFormInstanceOperationsIntfEJB.setProcessFormDatax(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor4098.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:611)
    at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.oracle.pitchfork.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:34)
    at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
    at com.oracle.pitchfork.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:42)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
    at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
    at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
    at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy727.setProcessFormDatax(Unknown Source)
    at Thor.API.Operations.tcFormInstanceOperationsIntfEJB_h6wb8n_tcFormInstanceOperationsIntfRemoteImpl.__WL_invoke(Unknown Source)
    at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
    at Thor.API.Operations.tcFormInstanceOperationsIntfEJB_h6wb8n_tcFormInstanceOperationsIntfRemoteImpl.setProcessFormDatax(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:611)
    at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
    at $Proxy141.setProcessFormDatax(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor4096.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:611)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
    at $Proxy723.setProcessFormDatax(Unknown Source)
    at Thor.API.Operations.tcFormInstanceOperationsIntfDelegate.setProcessFormData(Unknown Source)
    at com.thortech.xl.webclient.actions.DirectProvisionUserAction.handleVerifyProcessData(DirectProvisionUserAction.java:2077)
    at com.thortech.xl.webclient.actions.DirectProvisionUserAction.goNext(DirectProvisionUserAction.java:363)
    at sun.reflect.GeneratedMethodAccessor3160.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:611)
    at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:269)
    at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(tcLookupDispatchAction.java:133)
    at com.thortech.xl.webclient.actions.tcActionBase.execute(tcActionBase.java:894)
    at com.thortech.xl.webclient.actions.tcAction.execute(tcAction.java:213)
    at org.apache.struts.chain.commands.servlet.ExecuteAction.execute(ExecuteAction.java:58)
    at org.apache.struts.chain.commands.AbstractExecuteAction.execute(AbstractExecuteAction.java:67)
    at org.apache.struts.chain.commands.ActionCommandBase.execute(ActionCommandBase.java:51)
    at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
    at org.apache.commons.chain.generic.LookupCommand.execute(LookupCommand.java:305)
    at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
    at org.apache.struts.chain.ComposableRequestProcessor.process(ComposableRequestProcessor.java:283)
    at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
    at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
    at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
    at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
    at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at com.thortech.xl.webclient.security.CSRFFilter.doFilter(CSRFFilter.java:76)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:121)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthContextFilter.java:108)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
    at java.security.AccessController.doPrivileged(AccessController.java:310)
    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3730)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3696)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
    at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2273)
    at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179)
    at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
    >
    <May 2, 2013 4:44:50 PM ICT> <Error> <OIMCP.EBSUM> <BEA-000000> <================= End Stack Trace =======================>

    You can build your own db connector using jdbc and set the specific field in a separate provisioning task once the main provisioning is done.
    Best regards
    /Martin

  • Enabling update for provisioned user in OIM11g

    Hi...
    To update a field(email id) of a provisioned user have got to know the following steps.
    1. Change the OIM Profile email id and save the User form
    2. OIM then checks against the Lookup.USR_PROCESS_TRIGGERS lookup for a task name that is mapped to the Email field - typically "Change Email"
    3. Add a task in target system provisioning process name as "Change Email".
    4. Now Write a code using OIM API which will update the Email field of target system provisioning process form with new Email id.
    5. Attach this adapter in Change Email" task.
    6. Then when the process form is updated that triggers a process task to update the Email for that given resource - "Update Email"
    Can i know which APIs are to be used for step 4 so that updation can take place from OIM to target system process form.
    Thanks.

    Amruta Agarwal wrote:
    Hi...
    To update a field(email id) of a provisioned user have got to know the following steps.
    1. Change the OIM Profile email id and save the User form
    2. OIM then checks against the Lookup.USR_PROCESS_TRIGGERS lookup for a task name that is mapped to the Email field - typically "Change Email"
    3. Add a task in target system provisioning process name as "Change Email".
    4. Now Write a code using OIM API which will update the Email field of target system provisioning process form with new Email id.
    5. Attach this adapter in Change Email" task.
    6. Then when the process form is updated that triggers a process task to update the Email for that given resource - "Update Email"
    Can i know which APIs are to be used for step 4 so that updation can take place from OIM to target system process form.
    Thanks.Just a copy adapter which reads the data from user profile and copies it to process form field.
    Steps from from Oracle:
    1) Suppose one created a UDF: UDF USR_UDF_BUS_PHONE for phone number called 'Business Phone Number' on the Users User Defined Field Form in Design Console
    2) Then double click on "Lookup Definition" under the Administration tree of Design Console and query for this "Lookup.USR_PROCESS_TRIGGERS" code.
    3) Add "Lookup Code Information" like this.
    i) Enter the UDF column created in step 1 for Code Key as USR_UDF_BUS_PHONE
    ii) Enter the word 'Change' without the quotes followed by the field name of the UDF column created in Decode column. So in this case the Decode is 'Change Business Phone Number' without the quotes
    iii) Language: en
    iv) Country: US
    4) Then create one adapter of type process task
    i) Move to Variable List tab and create a variable "var1" Resolve at run time.
    ii) Add logic task -> SET VARIABLE and click on continue
    iii) In Add Set Variable Task Parameter dialog, select Adapter return value in variable name drop down, Operand Type as Variable, Operand Qualifier ->"var1" created in 4i).
    5) Add one process task under the Resource Object's Process Definition in Design Console named 'Change Business Phone Number' without the quotes. Note: The task name should be
    exactly same as Decode value in lookup definitions and then make it conditional and also check "Allow Multiple Instances".
    6) In "Integration" tab of task add adapter you have created in 4) and then map the adapter variables.
    i) Map Adapter Return Variable to Process Data and then select the process form field (Example: UD_ADUSER_PHONE) which you want to update with the user's Business Telephone USR_UDF_BUS_PHONE field.
    ii) Then map the other adapter variable to User Definition -> map with user's Business Telephone USR_UDF_BUS_PHONE field.
    Result: Now when user's Business Telephone is update, the Change Business Telephone will get triggered in and inserted for this resource and copy the change from user profile to the process form. If the connector already has the 'Business Telephone Updated' Process Task in the Process definition which has an adapter to update the target then because of the update to the Business Telephone in the process form, the 'Business Telephone Updated' task will be triggered and target will also get updated with the new change.
    HTH,
    BB
    Edited by: bbagaria on Sep 5, 2011 10:44 AM

  • How to enable anonymous users to upload pictures inside a picture library?

    I have a sharepoint site. i have created a picture library inside this sharepoint site. i am trying to enable anonymous users to upload pictures in this picture library without login into the site.
    Please let me know if that's possible or is there a way that anonymous users can upload files or pictures inside sharepoint site without login into the site.Visit: http://yagyashree.wordpress.com
    MCP & MCTS [WSS 3.0/MOSS]

    Hi,
    You need to at least enable anonymous access for the picture library.
    To enable anonymous access for individual lists
    Go to the home page of your Web site and, in the left navigation pane, click View All Site Content.
    Click the list on which you want to enable anonymous access.
    On the Settings menu, click List Settings.
    On the Customize List page, in the Permissions and Management section, click Permissions for this list.
    On the Permissions page, on the Actions menu, click Edit Permissions. A dialog box is displayed informing you that you are about to create unique permissions for this list. Click OK.
    On the Settings menu, click Anonymous Access.
    Select permissions for users who have anonymous access to the list, and then click OK.
    In the step 7, make sure you have checked Add Items option.
    See Configure anonymous access (Office SharePoint Server) (http://technet.microsoft.com/en-us/library/cc263363.aspx) for more information.
    Hope the information can be helpful.
    -lambert
    Lambert Qin | Microsoft Online Support Engineer
    How to ask a question in the forum (http://support.microsoft.com/kb/555375)
    Posting is provided "AS IS" with no warranties, and confers no rights.

  • Using RunAs to enable Lync users

    Is it possible to use RunAs on a Windows 7 SP1 x64 workstation to enable Lync users. I have a one line powershell command to enable Lync users but the command the account the person is using doesn't have the correct rights. I played around with the RunAs
    command but can't seem to get it to work.

    Try this:
    $UserCredential = Get-Credential
    $a = New-PSSession -connectionuri https://lync01.domain.com/ocspowershell -Credential $UserCredential
    Import-PSSession $a
    Then run enable-csuser from there.
    Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
    SWC Unified Communications

  • How do I enable "Audit user account logons" using PowerShell, to improve security?

    With successful hacking attacks more often employing valid Active Directory user credentials, it is quite helpful when administrators can
    easily poll user logon events. Rather than query
    every domain computer for its logon events, one can alter the Default Domain Controller Policy GPO to enable "Audit user account logons" (Success and Failure) then merely poll
    only the domain controller -- quite efficient. PowerShell helpfully has its Group Policy Module, including the following two cmdlets.
    1) Get-GPO "Default Domain Controllers Policy" will retrieve the top-level GPO object, but how do I enable that specific setting?
    2) Set-GPRegistryValue might be the right tool, but I cannot find any documentation on the values I need to supply to its parameters (-Name -Key -ValueName -Type -Value) to enable "Audit user account logons" -- both Successes and Failures.
    One can manually modify this setting using the Group Policy Management console GUI on the domain controller, but I am trying to upgrade my professional work habits to use stored scripts, rather than unrecorded point & clicks, so that my actions are repeatable
    and documented.
    Any pointers to documentation or an example would be welcome. I originally posted this question in the TechNet PowerShell Forum this afternoon, but someone recommended I copy it to the TechNet Group Policy Forum.
    Jeffrey - New Orleans MCITP Enterprise Administrator, Virtualization Administrator

    Hi Jeffrey,
    >>One can manually modify this setting using the Group Policy Management console GUI on the domain controller, but I am trying to upgrade my professional work habits to use stored scripts, rather than unrecorded point & clicks, so that my actions
    are repeatable and documented.
    Before going further, although you have expressed that you don't want to use GPMC GUI to configure the audit setting, in fact, it's an easy and comparatively handy method to set the setting. Besides, based on the description, you
    want to use PowerShell to do this. However, as far as I know, PowerShell can configure registry-based policy settings and Group Policy Preferences Registry settings, but audit policy security settings are not registry keys.
    Nonetheless, if we really don't want to use GPMC console to do this, we can use Auditpol.exe to set the audit setting.
    Regarding this point, the following article can be referred to for more information.
    Auditpol
    https://technet.microsoft.com/en-in/library/cc731451.aspx
    Auditpol set
    https://technet.microsoft.com/en-in/library/cc755264.aspx
    In addition, regarding Group Policy Cmdlets in Windows PowerShell, the following article can be referred to for more information.
    Group Policy Cmdlets in Windows PowerShell
    https://technet.microsoft.com/en-us/library/ee461027.aspx
    TechNet Subscriber Support
    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.
    Best regards,
    Frank Shen

  • Enabling a User through OIM API

    Hi I am trying to enable a user through OIM API, However the end date is already passed for that user, I am setting up a new end date through the Program (showm below). However the update user is not working (i am not sure).
    Map usermap = new HashMap();
    usermap.put("Users.User ID", User_id );
    Map grpmap = new HashMap();
    grpmap.put("Groups.Group Name", Group_Name);
    tcResultSet ts = userClient.findUsers(usermap); //find all users
    String existing_end_date = ts.getStringValue("Users.End Date");
    tcResultSet tg = groupClient.findGroups(grpmap); //find requireq group
    long ukey = ts.getLongValue("Users.Key");
    long gkey = tg.getLongValue("Groups.Key"); //find group key
    // ENABLE THE USER
    java.util.Date new_end_date = new java.util.Date(111,1,1);
    Calendar cal = Calendar.getInstance();
    cal.setTime(new_end_date);
    DateFormat dateFormat = new SimpleDateFormat("yyyy-MM-dd hh:mm:ss");
    String Str1 = dateFormat.format(cal.getTime());
    String Str2 = existing_end_date + " 12:00:00";
    System.out.println(User_id+" OLD End Date:" + Str2 + " New End Date: " + Str1);
    Map usermap2 = new HashMap();
    usermap2.put("Users.User ID", User_id );
    usermap2.put("Users.End Date", Str1);
    userClient.updateUser(ts,usermap2);
    userClient.enableUser(ukey);
    I am getting the following error:
    U0000018 OLD End Date:2009-09-30 12:00:00 New End Date: 2011-02-01 12:00:00
    2/12/2010 15:02:53 oracle.j2ee.rmi.RMIMessages EXCEPTION_ORIGINATES_FROM_THE_REMOTE_SERVER
    WARNING: Exception returned by remote server: {0}
    Thor.API.Exceptions.tcAPIException: The user cannot be enabled because the end date is passed.
    Not sure why it is happening. It looks like the Updateuser is not working, or something else?
    Please advise. Thanks in advance.

    Hi Suren,
    thanks for the note.
    I found that as soon as I enable the user, I am getting the followimg messages in the opmn logs:
    INFO,06 Dec 2010 10:55:41,841,[XELLERATE.JAVACLIENT],System Event Handler: Validating Organization for an User.
    INFO,06 Dec 2010 10:55:41,944,[XELLERATE.JAVACLIENT],System Event Handler: Triggering Processes related to User.
    INFO,06 Dec 2010 10:55:42,402,[XELLERATE.JAVACLIENT],System Event Handler: Enabling the User
    INFO,06 Dec 2010 10:55:42,421,[XELLERATE.JAVACLIENT],System Event Handler: Validating Organization for an User.
    INFO,06 Dec 2010 10:55:42,427,[XELLERATE.JAVACLIENT],System Event Handler: Triggering Processes related to User.
    INFO,06 Dec 2010 10:55:42,439,[XELLERATE.JAVACLIENT],System Event Handler: Changing application data based on Organization change.
    INFO,06 Dec 2010 10:55:42,442,[XELLERATE.JAVACLIENT],System Event Handler: Auto-Group Membership Event.
    INFO,06 Dec 2010 10:55:43,715,[XELLERATE.JAVACLIENT],System Event Handler: Evaluating User Policies
    So, the access policies are getting evaluated, triggering provisioning processes.
    What I am planning to do is, to disable the access policies and try to run the Program.
    Because of this issue, my Program is throwing an error (until I looked into the opmn logs, it doesn't make sense).
    6/12/2010 10:55:50 oracle.j2ee.rmi.RMIMessages EXCEPTION_ORIGINATES_FROM_THE_REMOTE_SERVER
    WARNING: Exception returned by remote server: {0}
    Thor.API.Exceptions.tcAPIException: Error occurred enabling Xellerate User instance.
    Regards
    Vijay Chinnasamy

  • Error on writing a connector using WSIF to provision users.

    Hello All,
    I am writing a connector to provision users using WSIF. Everything works great through my IDE (eclipse on Windows XP), but when I drop the jar, map the adapter (using OIM 9.0.3, RH4, and weblogic 8.1 SP6) and invoke a process task I get the following error:
    The WSIFDefaultMapper class exists in the wsif.jar file and as far as I can tell, only one instance of that class file exists (did a grep on all jar files).
    Any pointers will be appreciated.
    java.lang.reflect.InvocationTargetException
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:324)
    Caused by: org.apache.wsif.WSIFException: Unable to create new mapper; nested exception is:
    java.lang.ClassNotFoundException: org.apache.wsif.mapping.WSIFDefaultMapper
    at org.apache.wsif.mapping.WSIFMapperFactory.newMapper(WSIFMapperFactory.java:107)
    at org.apache.wsif.mapping.WSIFMapperFactory.newMapper(WSIFMapperFactory.java:52)
    at org.apache.wsif.base.WSIFServiceImpl.overrideMapper(WSIFServiceImpl.java:1106)
    at org.apache.wsif.base.WSIFServiceImpl.init(WSIFServiceImpl.java:938)
    at org.apache.wsif.base.WSIFServiceImpl.<init>(WSIFServiceImpl.java:299)
    at org.apache.wsif.base.WSIFServiceFactoryImpl.getService(WSIFServiceFactoryImpl.java:274)
    at com.netapp.webservice.DynamicInvoker.invokeMethod(DynamicInvoker.java:213)
    at com.netapp.webservice.DynamicInvoker.WSIF(DynamicInvoker.java:130)
    ... 56 more
    Caused by: java.lang.ClassNotFoundException: org.apache.wsif.mapping.WSIFDefaultMapper
    at weblogic.utils.classloaders.GenericClassLoader.findClass(GenericClassLoader.java:199)
    at weblogic.utils.classloaders.ChangeAwareClassLoader.findClass(ChangeAwareClassLoader.java:61)
    at java.lang.ClassLoader.loadClass(ClassLoader.java:289)
    at java.lang.ClassLoader.loadClass(ClassLoader.java:235)
    at weblogic.utils.classloaders.GenericClassLoader.loadClass(GenericClassLoader.java:224)
    at weblogic.utils.classloaders.ChangeAwareClassLoader.loadClass(ChangeAwareClassLoader.java:41)
    at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:302)
    at java.lang.Class.forName0(Native Method)
    at java.lang.Class.forName(Class.java:219)
    at org.apache.wsif.mapping.WSIFMapperFactory.newMapper(WSIFMapperFactory.java:100)
    ... 63 more
    com.thortech.xl.dataobj.util.tcAdapterTaskException: Unable to create new mapper; nested exception is:
    java.lang.ClassNotFoundException: org.apache.wsif.mapping.WSIFDefaultMapper
    at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpNTAPSERVICENOW.INSERT(adpNTAPSERVICENOW.java:108)
    at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpNTAPSERVICENOW.implementation(adpNTAPSERVICENOW.java:50)
    at com.thortech.xl.client.events.tcBaseEvent.run(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.runEvent(Unknown Source)
    at com.thortech.xl.dataobj.tcScheduleItem.runMilestoneEvent(Unknown Source)
    at com.thortech.xl.dataobj.tcScheduleItem.eventPostInsert(Unknown Source)
    at com.thortech.xl.dataobj.tcDataObj.insert(Unknown Source)
    Thanks,
    Sunny
    Edited by: user11989584 on Dec 1, 2009 4:36 PM

    I have narrowed this down to the following (some of this is a repetition, I am copying and pasting my post from a WSIF forum):
    I am using wsif wsif-2.0.1_IB3 to connect to a webservice to create user accounts. Everything works great in Eclipse.
    When I deployed my jars (application jars, wsif and dependencies) to weblogic 8.1 sp6 and generate a task through OIM that calls this adapter, I run into the following error:
    org.apache.wsif.WSIFException: Unable to create new mapper; nested exception is:
    java.lang.ClassNotFoundException: org.apache.wsif.mapping.WSIFDefaultMapper
    Caused by: java.lang.ClassNotFoundException: org.apache.wsif.mapping.WSIFDefaultMapper
    at weblogic.utils.classloaders.GenericClassLoader.findClass(GenericClassLoader.java:199)
    at weblogic.utils.classloaders.ChangeAwareClassLoader.findClass(ChangeAwareClassLoader.java:61)
    at java.lang.ClassLoader.loadClass(ClassLoader.java:289)
    at java.lang.ClassLoader.loadClass(ClassLoader.java:235)
    at weblogic.utils.classloaders.GenericClassLoader.loadClass(GenericClassLoader.java:224)
    at weblogic.utils.classloaders.ChangeAwareClassLoader.loadClass(ChangeAwareClassLoader.java:41)
    at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:302)
    at java.lang.Class.forName0(Native Method)
    at java.lang.Class.forName(Class.java:219)
    at org.apache.wsif.mapping.WSIFMapperFactory.newMapper(WSIFMapperFactory.java:100)
    The WSIFMapperFactory.class exists in wsif.jar file and makes a call to newMapper but is unable to load org.apache.wsif.mapping.WSIFDefaultMapper that is in the same wsif.jar file.
    public static WSIFMapper newMapper() throws WSIFException {
    return newMapper(false);
    The line that it fails on is Class c = Class.forName(mapperClassNameBuffer.toString(), true, Thread.currentThread().getContextClassLoader());
    from the following code snippet in WSIFMapperFactory.class file
    try {
    Class c =
    Class.forName(
    mapperClassNameBuffer.toString(),
    true,
    Thread.currentThread().getContextClassLoader());
    return (WSIFMapper) c.newInstance();
    } catch (ClassNotFoundException cnf) {
    throw new WSIFException("Unable to create new mapper", cnf);
    } catch (Exception e) {
    throw new WSIFException("Unable to create new mapper", e);
    Any ideas on how to fix this?
    I modified some of the WSIF code to try using the following:
    Class c = Thread.currentThread().getContextClassLoader().loadClass(mapperClassNameBuffer.toString()); but it had the same effect.
    Again, the same code path works great standalone in Eclipse.
    Any help/pointers would be appreciated.

  • Help-ColdFusion - enabling a user to search for records in a database by entering a startand end date - (CREATEODBCDATE)

    I want to enable a user to enter a start and end date to
    define the period they want to search for records of members who
    joined on certain dates. Funny thing is...I've got it to work half
    of the time. For e.g. I have 4 records between 26/10/2005 and
    1/08/2006. When I enter 01/01/2005 as startDate and 31/08/2006 as
    endDate, I get the 4 records. However, if I alter the endDate to
    01/09/2006 I get every record in the database!!!??? Why's this? I
    can't get my head around it!
    Here's my code:
    First the code for the form the user input the search
    criteria on:
    <html>
    <body>
    <FORM action="memberJDateSearch.cfm" method="post">
    <p>Start Date: <input type="text"
    name="startDate">
    <br>End Date: <input type="text" name="endDate">
    <input type="reset" value="Clear">
    <input type="submit" value="Submit">
    </FORM>
    </body>
    </html>
    Simple enough. Now the code for the process and display page:
    <html>
    <body>
    <cfquery name="memberJDateSearch"
    datasource="jpkelle2-access">
    SELECT *
    From members
    WHERE ((joinDate BETWEEN #CreateODBCDate(startDate)# AND
    #CreateODBCDate(endDate)#))
    </cfquery>
    <table border=1 bgcolor="beige" cellpadding="3"
    cellspacing="0">
    <tr>
    <th>Member ID</th>
    <th>Name</th>
    <th>Sex</th>
    <th>Date of Birth</th>
    <th>Address</th>
    <th>Email</th>
    <th>Date Joined</th>
    </tr>
    <CFOUTPUT Query="memberJDateSearch">
    <tr>
    <td><center>#memberID#<center></td>
    <td width="15%">#forename# #initial#
    #surname#</td>
    <td>#sex#</td>
    <td width="10%">#disp('#dob#')#</td>
    <td>#address#, #town#, #county#, #postCode#</td>
    <td>#email#</td>
    <td width="10%">#disp('#joinDate#')#</td>
    </tr>
    </CFOUTPUT>
    </table>
    <hr><p>End of members list.</p>
    </body>
    </html>
    any ideas? please help me.

    Try formatting your dates first (before the CreateODBCDate
    call). I just tried this on my test page and it worked properly. I
    removed the DateFormat calls, keeping the dates in your format and
    it didn't work. See if something like the following will help:
    <cfset startDate =
    DateFormat("31/01/2006","dd/mm/yyyy")/>
    <cfset endDate =
    DateFormat("01/09/2007","dd/mm/yyyy")/>
    <cfquery name="memberJDateSearch"
    datasource="jpkelle2-access">
    SELECT *
    From members
    WHERE ((joinDate BETWEEN #CreateODBCDate(startDate)# AND
    #CreateODBCDate(endDate)#))
    </cfquery>

  • Script that enables mail users and kicks out two csv files

    I am working on a script that will mainly be used as a scheduled task to enabled mailuser by calling the update-recipient command. 
    But before it calls that command it will get for various issues that can cause errors.
    Missing PrimarySMTP
    Display name having a space at front or back.
    The external email address being blank.
    I have IF statements setup to check for those and then call a function that will save into an array the issue for that user. 
    Here is the script
    <#
    .SYNOPSIS
    Enable-MailUsers Synced Mail Users in the Exchange environment
    THIS CODE IS MADE AVAILABLE AS IS, WITHOUT WARRANTY OF ANY KIND. THE ENTIRE
    RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS CODE REMAINS WITH THE USER.
    Version .9, 30 June 2014
    .DESCRIPTION
    This script mail-enables Synced Mail Users and creates a CSV report of mail users that were enabled.
    The following is shown:
    * Report Generation Time
    .PARAMETER SendMail
    Send Mail after completion. Set to $True to enable. If enabled, -MailFrom, -MailTo, -MailServer are mandatory
    .PARAMETER MailFrom
    Email address to send from. Passed directly to Send-MailMessage as -From
    .PARAMETER MailTo
    Email address to send to. Passed directly to Send-MailMessage as -To
    .PARAMETER MailServer
    SMTP Mail server to attempt to send through. Passed directly to Send-MailMessage as -SmtpServer
    .PARAMETER ScheduleAs
    Attempt to schedule the command just executed for 10PM nightly. Specify the username here, schtasks (under the hood) will ask for a password later.
    .EXAMPLE
    Generate the HTML report
    .\Enable-MailUsers.ps1 -SendMail -MailFrom [email protected] -MailTo [email protected] -MailServer ex1.contoso.com -ScheduleAs SvcAccount
    #>
    param(
    [parameter(Position=0,Mandatory=$false,ValueFromPipeline=$false,HelpMessage='Send Mail ($True/$False)')][bool]$SendMail=$false,
    [parameter(Position=1,Mandatory=$false,ValueFromPipeline=$false,HelpMessage='Mail From')][string]$MailFrom,
    [parameter(Position=2,Mandatory=$false,ValueFromPipeline=$false,HelpMessage='Mail To')]$MailTo,
    [parameter(Position=3,Mandatory=$false,ValueFromPipeline=$false,HelpMessage='Mail Server')][string]$MailServer,
    [parameter(Position=4,Mandatory=$false,ValueFromPipeline=$false,HelpMessage='Schedule as user')][string]$ScheduleAs
    # Sub Function to neatly update progress
    function _UpProg1
    param($PercentComplete,$Status,$Stage)
    $TotalStages=5
    Write-Progress -id 1 -activity "Mail enabled Objects" -status $Status -percentComplete (($PercentComplete/$TotalStages)+(1/$TotalStages*$Stage*100))
    #Sub Function create ErrObject output
    function _ErrObject{
    Param($name,
    $errStatus
    If(!$err){
    Write-Host "error detected"
    $script:err = $True
    $ErrObject = New-Object -TypeName PSObject
    $Errobject | Add-Member -Name 'Name' -MemberType Noteproperty -Value $Name
    $Errobject | Add-Member -Name 'Comment' -MemberType Noteproperty -Value $errStatus
    $script:ErrOutput += $ErrObject
    # 1. Initial Startup
    # 1.0 Check Powershell Version
    if ((Get-Host).Version.Major -eq 1)
    throw "Powershell Version 1 not supported";
    # 1.1 Check Exchange Management Shell, attempt to load
    if (!(Get-Command Get-ExchangeServer -ErrorAction SilentlyContinue))
    if (Test-Path "D:\Exchsrvr\bin\RemoteExchange.ps1")
    . 'D:\Exchsrvr\bin\RemoteExchange.ps1'
    Connect-ExchangeServer -auto
    } elseif (Test-Path "D:\Exchsrvr\bin\Exchange.ps1") {
    Add-PSSnapIn Microsoft.Exchange.Management.PowerShell.Admin
    .'D:\Exchsrvr\bin\Exchange.ps1'
    } else {
    throw "Exchange Management Shell cannot be loaded"
    # 1.2 Check if -SendMail parameter set and if so check -MailFrom, -MailTo and -MailServer are set
    if ($SendMail)
    if (!$MailFrom -or !$MailTo -or !$MailServer)
    throw "If -SendMail specified, you must also specify -MailFrom, -MailTo and -MailServer"
    # 1.3 Check Exchange Management Shell Version
    if ((Get-PSSnapin -Name Microsoft.Exchange.Management.PowerShell.Admin -ErrorAction SilentlyContinue))
    $E2010 = $false;
    if (Get-ExchangeServer | Where {$_.AdminDisplayVersion.Major -gt 14})
    Write-Warning "Exchange 2010 or higher detected. You'll get better results if you run this script from an Exchange 2010/2013 management shell"
    }else{
    $E2010 = $true
    $localserver = get-exchangeserver $Env:computername
    $localversion = $localserver.admindisplayversion.major
    if ($localversion -eq 15) { $E2013 = $true }
    #Get date
    $filedate = get-date -uformat "%m-%d-%Y"
    $filedate = $filedate.ToString().Replace("0", "")
    #Get the valid users that are not mail-enabled
    _UpProg1 1 "Getting User List" 1
    #$Users = Get-mailuser -ResultSize unlimited -OrganizationalUnit "R0018.COLLABORATION.ECS.HP.COM/Accounts/AbbVienet/Users" | ?{$_.legacyexchangeDN -eq ""}
    $i = 0
    $output = @()
    $errOutput = @()
    $err = $False
    #2 Process users
    ForEach ($User in $Users){
    $i++
    _UpProg1 ($i/$Users.Count*100) "Updating Recipients" 2
    If ($user.ExternalEmailAddress -eq $null){
    _ErrObject $user.Name, "Missing External Email Address"
    ElseIf($user.DisplayName -NotLike "* "){
    _ErrObject $user.Name, "DisplayName contains a trailing space"
    ElseIf($user.DisplayName -NotLike "_*"){
    _ErrObject $user.Name, "DisplayName contains a Leading space"
    ElseIf($user.PrimarySmtpAddress -eq $null){
    _ErrObject $user.Name, "Missing Primary SMTP address"
    Else{
    #Disable EmailAddressPolicy on these users
    Set-Mailuser $User.Name -EmailAddressPolicyEnabled $false
    #pass to Update-recipient
    Update-Recipient $User.Name
    $LEDN = Get-MailUser $User.Name | Select {$_.LegacyExchangeDN}
    If ($LEDN -ne ""){
    $object = New-Object -TypeName PSObject
    $X500 = "x500:" + $LEDN.'$_.LegacyExchangeDN'
    $object | Add-Member -Name 'Name' -MemberType Noteproperty -Value $User.Name
    $object | Add-Member -Name 'x500' -MemberType Noteproperty -Value $X500
    $output += $object
    #Creating CSVFile Output
    _UpProg1 99 "Outputting CSV file 3" 3
    $CSVFile = "c:\scripts\Mail-enable\Mailenabled_$((Get-Date).ToString('MM-dd-yyyy_hh-mm-ss')).csv"
    If($err){
    $ErrCSVFile = "c:\scripts\Mail-enable\ProblemUsers_$((Get-Date).ToString('MM-dd-yyyy_hh-mm-ss')).csv"
    $errOutput | Select-Object Name, Comment | ConvertTo-CSV -NoTypeInformation > $ErrCSVFIle
    $Output | ConvertTo-Csv -NoTypeInformation > $CSVFile
    if ($SendMail)
    _UpProg1 95 "Sending mail message.." 4
    If($err){
    Send-MailMessage -Attachments $CSVFile,$ErrCSVFile -To $MailTo -From $MailFrom -Subject "Enable Mail Users Script" -BodyAsHtml $Output -SmtpServer $MailServer
    Else{
    Send-MailMessage -Attachments $CSVFile -To $MailTo -From $MailFrom -Subject "Enable Mail Users Script" -BodyAsHtml $Output -SmtpServer $MailServer
    if ($ScheduleAs)
    _UpProg1 99 "Attempting to Schedule Task.." 4
    $dir=(split-path -parent $myinvocation.mycommand.definition)
    $params=""
    if ($SendMail)
    $params+=' -SendMail:$true'
    $params+=" -MailFrom:$MailFrom -MailTo:$MailTo -MailServer:$MailServer"
    $task = "powershell -c \""pushd $dir; $($myinvocation.mycommand.definition) $params\"""
    Write-Output "Attempting to schedule task as $($ScheduleAs)..."
    Write-Output "Task to schedule: $($task)"
    schtasks /Create /RU $ScheduleAs /RP /SC DAILY /ST 22:00 /TN "Enable Mail Users" /TR $task
    The Problem is that when I look at the $errOutput I see things but when I pipe the $erroutput to convertTo-CSV I get this within the CSV file. I think its because I an calling a function to do the updating. But not sure.
    Jeff C

    Hi Jeff,
    Any updates? If you have any other questions, please feel free to let me know.
    A little clarification to the script:
    function _ErrObject{
    Param($name,
    $errStatus
    If(!$err){
    Write-Host "error detected"
    $script:err = $True
    $ErrObject = New-Object -TypeName PSObject
    $Errobject | Add-Member -Name 'Name' -MemberType Noteproperty -Value $Name
    $Errobject | Add-Member -Name 'Comment' -MemberType Noteproperty -Value $errStatus
    $script:ErrOutput += $ErrObject
    $errOutput = @()
    _ErrObject Name, "Missing External Email Address"
    $errOutput
    _ErrObject Name "Missing External Email Address"
    $errOutput
    If you have any feedback on our support, please click here.
    Best Regards,
    Anna Wang
    TechNet Community Support

  • Cannot enable Admistrative user after already been enabled before

    I hope im not alone on this one but wat the hell, i need help asap. My problem is that I cannot enable my Administrative user( the built in one). I had enabled it long tym before, created a password, and then disabled it again just recently. now I can't
    re-enable this user account as I need an administrative password. I would have gladly entered the password if there was somewhere I could actually type it in but, no...there was none.
    I've tried all three methods but that was for enabling the administrative account without the use of a password or when enabling it for the first time. i cannot install anything and have lots of invaluable information on the admin acc. on the
    verge of breaking my notebook. Help Please. 

    Hi,
    Have you tried the option 3 (UI) and option 4 (GPO) to enable it.
    How to Enable or Disable Built-in Elevated "Administrator" Account Windows 8 and 8.1
    http://www.eightforums.com/tutorials/9650-built-administrator-account-enable-disable-windows-8-a.html
    Can we get this done?
    If there is any difficult or issue during these steps, please post back the detailed status here for further research.
    If we cannot get this fixed, we may need to reset or refresh the PC from installation media/image backup to fix the issue. 
    Kate Li
    TechNet Community Support

  • Changing short name - cannot enable root user??

    Hi I encountered a problem trying to enable the root user in order to follow the steps to change my short name. As I follow the steps into opening Directory Utility and entering my administrator account name and password. Here's where I'm stuck at, there is no "Edit" button asking me to enable the root user. Anyone have any idea what I should do now?

    ow88 wrote:
    Alright I have no idea why I can't edit my own post, but anyways..
    You only have about 10 minutes to edit.
    did a little research, turns out it gets more complicating than that. It messes up your files, locks you out, and you lose being your own adminstrator? But since I have nothing saved, this doesn't affect me right?
    In Directory Utility.app (in utilities) unlock the lock, lower left by clicking on it. Then in the menu, top left on your screen, under Edit, click Enable Root user and proceed.
    You can also enable the root in a terminal by entering
    sudo passwd root
    and first entering your regular admin password and then selecting a root password, which should not be the same as your admin password for obvious reasons.
    After that you are on your own, but I suggest first backing the OS up since there might be unexpected consequences from changing the short name. Even if you have nothing saved, you might find that the OS gets hosed for some reason and you have to do a complete reinstall. Using a TM or clone backup makes this a trivial thing to do. Otherwise, it's starting from scratch and updating everything all over again.

  • Enable Root User in Snow Leopard 10.6.6

    I read the exact same question in an earlier topic, but part of the answer doesn't make sense to me when I follow the instructions.
    The link to the 'answer' is here http://support.apple.com/kb/HT1528?viewlocale=en_US
    I understand it all, right up to step 9 where it says "Choose Enable Root User from the Edit menu."
    There is no Edit menu on the Directory utility window. There is a Services tab and a 'search policy' tab.
    There is a pencil, but no Menu, or anything that shows Edit.
    Can someone help me with this? I would include a screen shot, but I don't see any way to do that in this forum.
    TIA!

    Thanks, really new to Mac's, (2 days now) and I guess this is just another thing that's different...

Maybe you are looking for