Re Evaluation for deployments - on logon?
Hi,
We need to reduce the Schedule for re evaluating deployments.
Mainly because we need failed applications to retry quicker than every 7 days, and I'm not really in favour of changing from the default of 7 days.
I seen something that suggested that re-evaluation also occurs on logon? Is this correct?
Those are two different things, maybe even three.
A retry happens after a failed installation happens after 2 hours (and will retry 10 times), depending of the error code (see for a list:
http://blogs.msdn.com/b/sreekarm/archive/2013/05/28/application-failure-retry-behavior-in-sccm-2012.aspx).
A deployment re-evaluation is more meant to check if a application is still installed (and will install if it's not detected) and not for failed installations.
Policy evaluation of the user is just to see if there are new policies available for the user, which might include an application installation. This does not trigger a deployment re-evaluation.
Also, as far as I know a restart does not trigger a application re-evaluation.
My Blog: http://www.petervanderwoude.nl/
Follow me on twitter: pvanderwoude
Similar Messages
-
Perform VENDOR EVALUATION for MORE THAN ONE VENDORS at a time
Hello all,
Please guide for any process where i can perform Vendor Evaluation for MORE THAN ONE vendors AT A TIME.
At my location there are around thousand vendors, which are to be evaluated, and difficult to perform the evaluation process one-by-one.
(ME61/ME62/ME63)
Detailed replies with various possibilities would be highly appreciated.
Thanks & Regards,
Joy GhoshThe vendor evaluation for some thousand vendors at the same time has already been in SAP long before they developed LSMW. The purpose of LSMW is to load data from a legacy system, of course you can (mis-)use it for a lot other things.
But you should not always use LSMW if you are to lazy to go thru the SAP standard menu to find a transaction like ME6G
There you define a job that runs RM06LBAT report.
You first have to define a selection variant for this report. this can be done in SE38 by entering the report name, select variant, clicking display, then entering a name for the variant and clicking Create. -
Client ID range for SAP GUI logon?
Hi,
Does anyone know what is the range of client IDs allowed for SAP GUI logon? I am assuming it to be 000-999. Is that correct?
Any help will be greatly appreciated.
Thanks,
VenkatHi venkata,
As Cherry mentioned above you can choose any client with exception of <b>000 SAP AG</b>, <b>001 Auslieferungsmandant</b> R11 and <b>066 Early Watch</b>, you can use the rest 997 clients to setup your system.
Hope this help!
Juan -
I want to grant permissions to all domain users to view reports on our Report Server. Domain users are able to access our Report Server URL and folder, but when they click on a report item they get an error message:
"Cannot open database "ReportServer" requested by the login. The login failed. Login failed for user 'USER LOGON'"
I'm using windows authentication and configured the local service account in SSReportS Config Manager as the credentials to connect to the Report Server DB.
Can someone please help how I should properly do this step by step to give all domain users permissions to view a report in SSRS?
Thanks much! - Rookie DBAHi IWAR,
The error message "Cannot open database "ReportServer" requested by the login. The login failed. Login failed for user 'USER LOGON'" means the user 'USER LOGON' does not have permissions to access the "ReportServer" database.
To fix this issue, please verify that the user has a valid database user login. For more details, please refer to the following steps.
In SQL Server Management Studio, open Object Explorer and expand the Databases folder.
Expand the database in which to create the new database user.
Right-click the Security folder, point to New, and then click User.
On the General page, enter a name for the new user in the User name box.
In the Login name box, enter the name of a SQL Server login to map to the database user.
Click OK.
Reference:
http://technet.microsoft.com/en-us/library/ms156468(v=sql.105).aspx
Hope this helps.
Thanks,
Katherine Xiong
Katherine Xiong
TechNet Community Support -
ORA-47400: Command Rule violation for CONNECT on LOGON
Oracle : 11.2.0.2.0
OS : AIX
Issue : alter log throwing error
ORA-12012: error on auto execute of job "SYS"."IDX_RB$J_6640_2"
Errors in file /oradiag/diag/rdbms/p1edwni/p1edwni/trace/p1edwni_j000_8306748.trc:
ORA-12012: error on auto execute of job "SYS"."IDX_RB$J_6640_2"
ORA-47400: Command Rule violation for CONNECT on LOGON Fri May 13 03:31:30 2011 Errors in file /oradiag/diag/rdbms/p1edwni/p1edwni/trace/p1edwni_j002_7307362.trc:
ORA-12012: error on auto execute of job "SYS"."IDX_RB$J_6640_3"
Errors in file /oradiag/diag/rdbms/p1edwni/p1edwni/trace/p1edwni_j002_7307362.trc:
ORA-12012: error on auto execute of job "SYS"."IDX_RB$J_6640_3"
ORA-47400: Command Rule violation for CONNECT on LOGON
sacbidb02-prd{oracle}: cat /oradiag/diag/rdbms/p1edwni/p1edwni/trace/p1edwni_j002_7307362.trc
Trace file /oradiag/diag/rdbms/p1edwni/p1edwni/trace/p1edwni_j002_7307362.trc
Oracle Database 11g Enterprise Edition Release 11.2.0.2.0 - 64bit Production
With the Partitioning, Oracle Label Security, OLAP, Data Mining,
Oracle Database Vault and Real Application Testing options
ORACLE_HOME = /oracle/product/11202_p1edwni/server
System name: AIX
Node name: sacbidb02-prd
Release: 1
Version: 6
Machine: 00C95CD24C00
Instance name: p1edwni
Redo thread mounted by this instance: 1
Oracle process number: 260
Unix process pid: 7307362, image: oracle@sacbidb02-prd (J002)
*** 2011-05-13 03:31:30.226
*** SESSION ID:(103.43457) 2011-05-13 03:31:30.226
*** CLIENT ID:() 2011-05-13 03:31:30.226
*** SERVICE NAME:(SYS$USERS) 2011-05-13 03:31:30.226
*** MODULE NAME:() 2011-05-13 03:31:30.226
*** ACTION NAME:() 2011-05-13 03:31:30.226
ORA-12012: error on auto execute of job "SYS"."IDX_RB$J_6640_3"
ORA-47400: Command Rule violation for CONNECT on LOGON
What could be the reason and how to resolve this ?
This appears coming form Database vault
Thanks in advanceHi:
I believe your question would be better targeted to the Database Vault forum, where you are more likely to get relevant responses. This is the Audit Vault forum, and people here would know less about that product than those on the other forum.
Regards. -
Problem: Run Time Evaluation for Future Period
Hi SAP Gurus, can someone help me solving this problem:
My client need to run time evaluation for 2-months period ahead of time. But every time I tried, time evaluation always stops at end of the current month, no further dates in the future. I had created attendance data 2002 for all the future dates. IT7, 2002, 2006 and all configurations seem to be OK (T510S,T569R). Test run is also OK with good future results. What could possibly be missing? Thank you in advance.
BillThank you very much, Arun, Banu, Stefan and Om.
Yes, I have entered the "Evaluation up to" date (60 days later);
The schema has a function "Check FUT".
Test future run result was generated correctly.
Still I can't have future results in real run.
So, what else I should check into?
Thanks again.
Bill -
Do not require smartcard for specific user logon
Hi everyone!
I set up a GPO setting for some application server "Interactive logon: Require smart card" to "enabled". So, now I need to allow a specific user (admin, for example) to logon to this computer without smartcard. How can I do this?
Note, that I need to allow only one user to logon without smartcard and other users must use their smartcards (but strongly they must use smartcards only for this application server - so, they should be able to logon to other domain computers without smartcard).
How can I reach this goal?> Require smart card" to "enabled". So, now I need to allow a specific
> user (admin, for example) to logon to this computer without smartcard.
> How can I do this?
To be honest: You cannot. Your setting is a computer setting and has no
exception possibilities for a subset of users. The other solution (AD
account properties of users) have no exception possibilities, too.
To me, it seems this user needs 2 accounts... One with "smartcard
required" to logon to all other computers and a second one that can only
logon to this computer (user rights: "allow logon locally").
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :)) -
Activate invoice evaluation for the company code.
HI,
I m doing vendor evaluation . want to make settings for main criteria "INVOICE".
With sub criterias
Quantity Variance & Price Variance.
In order for evaluation results for the above two subcriteria to be generated automatically,
you must activate invoice evaluation for the company code.
Where do i do the above setting.
regardsTell the user to run SU53 and send that info to your authorizations person. SU53 will show what was actually the problem if it was related to authorizations. This has to be done instantly after closing the error message (preferably in a new session).
The difference between test and production environments could be that the user has another type of access there. -
I am getting the event (below) every day on a new 2008 domain controller that I brought up recently. The DC has a domain controller certificate, that was automatically issued by an online enterprise CA. This CA is located in another domain (child domain) within the same forest. The 2008 DC is in the top-lvel domain. None of the other domain controllers , which are 2003, are reporting this message. I ran certutil.exe, and it successfully verifies all domain controller certificates, including the certificate on my new 2008 DC. Any ideas why these messages continue to appear?
The Key Distribution Center (KDC) cannot find a suitable certificate to use for smart card logons, or the KDC certificate could not be verified. Smart card logon may not function correctly if this problem is not resolved. To correct this problem, either verify the existing KDC certificate using certutil.exe or enroll for a new KDC certificate.Hi,
I have checked the file. Here is my findings:
1. The computer name of the domain controllers are different in this dcinfo.txt file. There is no Swampoak. I would like to confirm which one is Windows Server 2008 domain controller.
2. The domain controller Buckeye and Madrone both have 2 KDC certificates, one is expired and the other one is valid:
*** Testing DC[0]: MADRONE
** KDC Certificates for DC MADRONE
Certificate 0: -à Valid
Serial Number: 116bbdd90000000000b6
Issuer: ***
NotBefore: 12/15/2008 2:28 AM
NotAfter: 12/15/2009 2:28 AM
Subject: CN=madrone.****
Certificate Template Name (Certificate Type): DomainController
Non-root Certificate
Template: DomainController, Domain Controller
Certificate 1: --à Expired
Serial Number: 15c2f00b000000000028
Issuer: ****
NotBefore: 3/9/2007 3:05 PM
NotAfter: 3/8/2008 3:05 PM
Subject: EMPTY (DNS Name=madrone.****)
Non-root Certificate
Template: DomainControllerAuthentication, Domain Controller Authentication
*** Testing DC[1]: BUCKEYE
** KDC Certificates for DC BUCKEYE
Certificate 0: -à Expired
Serial Number: 15c4ddc2000000000029
Issuer: *****
NotBefore: 3/9/2007 3:07 PM
NotAfter: 3/8/2008 3:07 PM
Subject: EMPTY (DNS Name=buckeye.****)
Non-root Certificate
Template: DomainControllerAuthentication, Domain Controller Authentication
Certificate 1: -à Valid
Serial Number: 115f34ec0000000000b4
Issuer: ****
NotBefore: 12/15/2008 2:15 AM
NotAfter: 12/15/2009 2:15 AM
Subject: CN=buckeye.****
Certificate Template Name (Certificate Type): DomainController
Non-root Certificate
Template: DomainController, Domain Controller
Suggestion:
1. Please delete the expired certificate and then reboot the domain controller and test the issue again.
2. If the issue persists, please request a new Domain Controller Authentication certificate on the domian controller and check the result. -
Exchange Evaluation for interest accrued (difference procedure)
Hi experts.
How can I run exchange evaluation for Accrued Interest, posted with Difference procedure?
I'm using Difference method to post Interest Accrual. This is working but the issue is that this instrument is in a different currency and I need to reevaluate the interest.
There is no issue if I use Reset procedure for interest. But here the requirement is to use Difference procedure.
is it possible to do this in TRM-TM-MM?
Regards.
Lucciano GuazzelliHi,
Which SAP version/EhP pack are you using?
In ECC6.0 EhP4, system takes care of exchange difference in subsequent accruals for foreign currency transactions, and post the difference.
In the first month, TPM44 only post the accrual entry. However from 2nd month onwards, system posts accrual entry as well as adjustment entry for all previous accruals.
You can further use FAGL_FC_VAL in FI to evaluate P&L and BS items using different exchange rate type. For example, BS items using spot rate and P&L items using average rate.
Thanks and regards,
Abhinav Sethi -
Unable to run time evaluation for the entire year...
hi experts,
I'am unable to run time evaluation for the entire year, even though mentioned the date as Force calculation as of : 01.01.2010
and evaluation upto date : 31.12.2010. when time evaluation is run , the log is only run for Jan 2010.
Maintained IT2011 from 01.01.2010 to 31.12.2010
IT0050 from 01.01.2010 to 31.12.9999
IT0003 : PDC recalculation : 01.01.2010
Kindly advise.
Regards
PammiCheck if Time Management status is 1 or 9....
If it is 1 then it would not run for the entire year..It would run only till today. If it is 9, then the TE runs for future also...also check if in the schema it is activated for future runs or not... -
Classic report - Condition evaluated for every row
APEX 4.2.2
I am seeing something strange in a classic report region. A report started to fail at run-time with a strange error about bad syntax. When I run the page in debug mode, I see the following
print column headings
rows loop: 30 row(s)
...Execute Statement: begin wwv_flow.g_boolean := '' is not null;
end;
......Result = false
...Execute Statement: begin wwv_flow.g_boolean := '' is not null;
end;
......Result = false
...Execute Statement: begin wwv_flow.g_boolean := 'string with a embedded ' single quote' is not null;
end;
......Result = true
Looks like the APEX engine is evaluating a boolean expression after rendering and each and every row in the report. And for some strange reason, it is using a piece of data from my query's resultset and failing because of the bad syntax introduced due to the single-quote in the string.
I have never seen this before. Any idea what is going on?
ThanksHowdy Paul, sorry should have provided all the details. No, this is a standard generic column template. Ah, you are right, drat I should have looked closer. The template has use a condition to show either a highlighted row or normal one. Sorry for the false alarm, I can take it from here. Enjoy your flight :-)
-
Prompting for the database logon while opening the report in CMC
I created a report and saved in the Crystal server 2008 repository. I set the default Database configuration as
report > Schedule > Database Logon > set password
or tick "Use same database logon as when report is run" in Default Settings > Database Configuration.
But when I am click on View for the report still it is promting for the database loging name and password.
is there any other settings required for this.
Thanks
UnniMoving to BOE forums
-
Best Practice for storing a logon to website in a desktop java app
Hoping someone well versed in java related security best practices can point me in the right direction.
I have a small java PC application that uses the Soap API to send various data to a 3rd party.
Currently I am storing the logon credentials for this 3rd party in a local database used by the application.
The username / password to connect to this database is encrypted and never accessed in clear text in the code.
(Although, since the application is stand alone, everything needed to decrypt the database credentials is packaged
with the application. It would not be easy to get the clear text credentials, but possible)
The caveat in my case is that the user of the application is not even aware (nor should be) that the application is interacting with
the 3rd party API at all. All the end user knows is that an entity (that they already have a relationship with) has asked them to
install this application in order to provide the entity with certain data from the user.
Is there a more secure way to do this will maintaining the requirement that the user not need know the logon credentials to the 3rd party?Moderator advice: Don't double post the same question. I've removed the other thread you started in the Other Security APIs, Tools, and Issues forum.
db -
SAPGui for Windows Multiple Logon with Portal
Hi,
We are using SAPGUI for Windows in Portal in the external window, we are also using it the SAPConsole form the desktop. While using from desktop, the multiple logon (within same client) complains / comes with the pop-up with two standard options.
We would like achieve the same functionality of popup (Restricting multiple logons for the same client) within the portal, any ideas?
I came across certain threads and also notes but none seem to provide a solution....
[Restrict multi logon to R/3 system from portal using single sign on. |Restrict multi logon to R/3 system from portal using sigle sign on.;
[SAP GUI 7.10 and SSO - multiple logons issue. How to restrict it? |/thread/1623980 [original link is broken];
Note 142724 - Prevention of multiple SAPGUI logons
Thank you in advance.
Best regards,
Dharmi
Edited by: Dharmi Tanna on Jun 25, 2010 2:09 PMLonny,
The best way to authenticate users when they logon using SAP GUI for Windows, is to use SNC authentication in SAP GUi. Then, the browser iview will launch the GUI and the GUI will authenticate the user using their AD credentials issued during the Windows logon. You will need to setup an SNC library on both the ABAP system which the user is logged onto, and the workstation where SAP GUI is installed.
If you don't use SNC, and you just launch SAP GUI for Windows from browser, then an SSO2 ticket is used to authenticate the user to the ABAP stack, and this is not secure due to the fact that the SAP GUI session which is used to pass the SSO2 ticket is not protected - anybody can intercept the SAP GUI session, take the SSO2 ticket from this traffic and logon as that user - clearly this is bad security and needs SNC to make it secure.
Thanks,
Tim
Maybe you are looking for
-
How to Disply the List of Roles assigned to a selected user ?
Hi all, I have a specific requirement to develope using Webdynpro. I want to programically display the list of roles assigned to a selected user. Could some one help me . I promise to award points for the solution. Thank you in advance Regards Maruti
-
Downloading MS Office 2008 to iMac without a port.
I have two licenses remaining on MS Office Home & Student Edition software purchased in 2008. It's supposed to be downloaded via the DVD provided in the packaging. Rather than purchasing a new "subscription" to MS Office as it's now called, and tossi
-
I am a bit confused about the ability to use Skype for unliminted calling. I am an insurance agent and I make many calls during the week to prospective and existing cliients and insurance companies . Am I eligible to use Skype for my insurance busine
-
Want to use camcorder not built-in
Anyone know how to view on my computer screen what my Aiptek camcorder "sees" (it's LCD screen won't work) or get my mackbook to use it for capture instead of the built-in? When I hook it up through the USB the computer can pull files off it, but see
-
i am a novice in java programming.suppose we create an object in static block of a class,then how to access that object outside that class.