Reconciliation ad users into an Organization

Similar Messages

• Assign user into SAP organizational structure

  Hi,
  I'm searching program or function which allows assigning user to a position within the SAP organizational structure as it can be done using the transaction PPOME.
  Thanks in advance for your answers.
  Regards,
  PFO

  Hi PFO - Use tcode PP01 to assign user to position,
  PP01->object type = position-> click on Relationships and click change mode now change the relationship type as uer and assign user to the selected position.
  hope this is helpful.
  ~john

• How can I get my pictures into the organizer

  With my old 10 elements I could upload directly from my camera into the organizer, with 12 it won't. I have to get each picture from a different folder, edit it, then save to another folder......a time consuming pain. What am I missing?

  Using Import From Camera or Card Reader ought to work exactly the same as in PSE10.
  Cheers,
  Neale
  Insanity is hereditary, you get it from your children
  If this post or another user's post resolves the original issue, please mark the posts as correct and/or helpful accordingly. This helps other users with similar trouble get answers to their questions quicker. Thanks.

• [Ask] Error While Provisioning New User Into RACF

  Dear All,
  I have a problem in provisioning user into RACF zOS. This is the error displayed below:
  Feb 29, 2012 11:08:00 AM com.identityforge.idfserver.util.ServerLogger error
  SEVERE: NamingException processing add request! Error message received: ICH01011I INSUFFICIENT AUTHORITY. ICH01010I USER(S) NOT ADDED. ~
  This is the error in detail :
  com.identityforge.idfserver.protocol.AddRequestProcessor - Responding to add w/ NamingException: NAMING_VIOLATION
  javax.naming.NamingException: ICH01011I INSUFFICIENT AUTHORITY. ICH01010I USER(S) NOT ADDED. ~
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.errorValidator(RacfRepositoryImpl.java:1176)
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.processAddUserCmd(RacfRepositoryImpl.java:536)
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.add(RacfRepositoryImpl.java:278)
  at com.identityforge.idfserver.backend.racf.RacfModuleOperation.processCreateUser(RacfModuleOperation.java:931)
  at com.identityforge.idfserver.backend.racf.RacfModule.create(RacfModule.java:285)
  at com.identityforge.idfserver.backend.Nexus.create(Nexus.java:103)
  at com.identityforge.idfserver.backend.IdfServerNexusModule.create(IdfServerNexusModule.java:476)
  at com.identityforge.idfserver.protocol.AddRequestProcessor.process(AddRequestProcessor.java:103)
  at com.identityforge.idfserver.protocol.ProtocolHelper.run(ProtocolHelper.java:37)
  at EDU.oswego.cs.dl.util.concurrent.PooledExecutor$Worker.run(Unknown Source)
  at java.lang.Thread.run(Thread.java:619)
  javax.naming.NamingException: ICH01011I INSUFFICIENT AUTHORITY. ICH01010I USER(S) NOT ADDED. ~
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.errorValidator(RacfRepositoryImpl.java:1176)
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.processAddUserCmd(RacfRepositoryImpl.java:536)
  at com.identityforge.idfserver.backend.racf.repository.RacfRepositoryImpl.add(RacfRepositoryImpl.java:278)
  at com.identityforge.idfserver.backend.racf.RacfModuleOperation.processCreateUser(RacfModuleOperation.java:931)
  at com.identityforge.idfserver.backend.racf.RacfModule.create(RacfModule.java:285)
  at com.identityforge.idfserver.backend.Nexus.create(Nexus.java:103)
  at com.identityforge.idfserver.backend.IdfServerNexusModule.create(IdfServerNexusModule.java:476)
  at com.identityforge.idfserver.protocol.AddRequestProcessor.process(AddRequestProcessor.java:103)
  at com.identityforge.idfserver.protocol.ProtocolHelper.run(ProtocolHelper.java:37)
  at EDU.oswego.cs.dl.util.concurrent.PooledExecutor$Worker.run(Unknown Source)
  at java.lang.Thread.run(Thread.java:619)
  I had done the scripts run by this command manually in RACF console and it's run well. But when I try provision using IdM, it throws such error. Is there anyone having the same problem?
  Any help will be apprecited.
  Thank you.
  Regards
  Johan Saragih

  Hey guys! 2 days and no replies yet. please help me with this.

• How to find out number of users in an organization?

  Can you show me how I can find the total number of users in an organization please? Paging through is not an optimal way since there are alot of users.

  DamonL wrote:
  (be careful if you have a lot though!)That's an understatement. :) If you have a LOT of users in your organization doing a search on the organization just to find the user count will bog down the IDM server for several minutes.

• Is it possible to import photos automatically into the organizer in elements 11, like picasa does?

  Is it possible to import photos automatically into the organizer in elements 11, like picasa does?

    On Windows open the Organizer and from the menu click:
  File >> Watch Folders
  Then check the radio button for automatic.

• DPM 2012 still requires put end users into local admin groups for the purpose of end user data recovery?

  On client computers that are protected by DPM 2010 and prior versions, you had to put the end users account in the local administrators group. If you did not add the end user account to the local administrators group you would get this error after opening
  the recovery tab in the DPM client: “DPM found no recovery points which you are authorized to restore on the specified DPM server. You can restore only those recovery points for which you were an administrator at the time the
  backup was taken. To restore other recovery points, contact your DPM administrator, or attempt to restore from another DPM.”  This is not ideal on many networks because the end users are not allowed to have local administrator access.
  Ths fix to this was included in hotfix 2465832 found here: http://support.microsoft.com/kb/2465832.
  This hotfix (a hotfix rollup package for DPM 2010) resolves other issues with DPM 2010 as well. You can find the full list of what this hotfix corrects on that link.
  One would think this issue should have been resolved in DPM 2012, however I am encountering the same exact issue, had to include end-users into the workstation local admin group before they can search for recovery points on the DPM server. This is not acceptable
  practice.
  Is there a new hotfix for the same issue on DPM 2012? I am hesitated to apply KB2465832 since it also includes many other fixes for DPM 2010, which may not appicable for version 2012.
  Please help.
  Thanks,

  This is a hands off solution to allow all users that use a machine to be able to restore their own files.
  1) Make these two cmd files and save them in c:\temp
  2) Using windows scheduler – schedule addperms.cmd to run daily – any new users that log onto the machine will automatically be able to restore their own files.
  <addperms.cmd>
  Cmd.exe /v /c c:\temp\addreg.cmd
  <addreg.cmd>
  set users=
  echo Windows Registry Editor Version 5.00>c:\temp\perms.reg
  echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Data Protection Manager\Agent\ClientProtection]>>c:\temp\perms.reg
  FOR /F "Tokens=*" %%n IN ('dir c:\users\*. /b') do set users=!users!%Userdomain%\\%%n,
  echo "ClientOwners"=^"%users%%Userdomain%\\bogususer^">>c:\temp\perms.reg
  REG IMPORT c:\temp\perms.reg
  Del c:\temp\perms.reg
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. Regards, Mike J. [MSFT] This
  posting is provided "AS IS" with no warranties, and confers no rights.
  That's a good one! Thanks for that.
  I've been scripting on KIX for some time, so here is mine, hope it helps to someone... (it's probably not the best, but it works)
  ========================================================================
  $RC=setoption("WOW64AlternateRegView","on") 
  $DPMkey = "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Data Protection Manager\Agent\ClientProtection"
  $uservariable = "%userdomain%\%username%"
  If KeyExist ($DPMkey)
  $Userstring=ReadValue($DPMkey, "ClientOwners")
  If $Userstring == ""
  WriteValue($DPMkey,"ClientOwners", $uservariable, "REG_MULTI_SZ")
  ? "Key created"
  else
  If not instr($Userstring,$uservariable)
  $Userstring = "$Userstring,$uservariable"
  WriteValue($DPMkey,"ClientOwners", $Userstring, "REG_MULTI_SZ")
  EndIf
  Endif
  EndIf
  ==========================================================================
  The problem actually is that you still need to use an admin account to write on the registry, so ensure you configure it properly on the schedule task.
  In case you use a service account on the schedule task... the "$uservariable" will get populated with that account. As a work around to this... I changed it for the following line:
  =========================================================
  $uservariable = ReadValue("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI", "LastLoggedOnSAMUser")
  =========================================================
  The only problem with that, is that key gets created/updated only if user gets logged phisically on that PC, but will not work for anyone connecting through RDP.

• Provision a user into an LDAP Group/Organisation

  Is it possible to provision a user into a Role that is mapped to an LDAP Group/Organisation through Identity Manager? I've seen that you can add users directly into LDAP groups, but we would like to add users into groups where they already have an account in the Resource/Directory.
  For example I want to allow an existing user;
  uid=User1,ou=Users,o=mycompany
  to access a resource protected by LDAP Group;
  cn=AppGroup1,ou=Groups,o=mycompany
  this group would be mapped to an Application or Business Role within Identity Manager.
  Is this possible?

  If I understand your problem correctly then there is no need for customizing the resource adapter java source code at all. You can "calculate" in which OU or O a user is created by customizing the resource's identity template. Just add a variable to the identity template DN and "calculate" that variable in either your form or map it to IGNORE_ATTR on the resource and then you could even set that value in a role.
  Same for adding a user into a directory group. Map the respective groups attribute and create a role for that resource, then configure the role to set the group attribute or merge the values - as simple as that. Or did I misunderstand what you are trying to do?

• Loging a user into mysql database example

  I'm looking for a clear example or tutorial on loging a user into a mtSQL database.  I don't want an automatic login like you get with the Flex Builder's db wizard.  What I have is a screen where the user enters a user name and password and then clicks a button to login.  I need to be able to handle the user not entering the correct user name or password, that is handling the mySQL rejecting the login.  I have done several serches both here and google and don't seem to find anything like I need.  Can anybody out there point me in the right direction?

  This is actually a faily simple thing to do...at least I think this is what you are trying to do based on what you said:
  Here is the code for the MXML to put together the login UI:
  <mx:Panel width="446" height="199" layout="absolute" title="Login" id="loginpanel">
          <mx:Label x="26" y="58" text="Username:"/>
          <mx:Label x="53" y="86" text="Password:"/>
          <mx:TextInput x="121" y="56" id="username"/>
          <mx:TextInput x="121" y="84" id="password" displayAsPassword="true"/>
          <mx:Button x="219" y="114" label="Log In" id="Submit" click="login_user.send()"/>
  </mx:Panel>
  you need an HTTPService call (which the Submit button above sends) to the PHP file that will check the user's credentials against what is in the DB:
  (mind you, I would encrypt the password on the client side too before sending it over to the PHP file)
  <mx:HTTPService id="login_user" result="checkLogin(event)" method="POST" url="login.php" useProxy="false">
          <mx:request xmlns="">
              <username>{username.text}</username>
              <password>{password.text}</password>
          </mx:request>
  </mx:HTTPService>
  now, the result of the HTTPService goes to a function called checkLogin(event) which is:
  import mx.rpc.events.ResultEvent;
  private function checkLogin(evt:ResultEvent):void
          if(evt.result.loginsuccess == "yes"){
              //user is GOOD, do something now
          if(evt.result.loginsuccess == "no"){
              mx.controls.Alert.show("Invalid username/password");
  and for the PHP file, it checks against the DB and generates an XML which is kicks back to Flex:
  <?php
  //connect to DB however you do it, I have a function db_connect() that I call
  $conn = db_connect();
  $username = mysql_real_escape_string($_POST['username']);
  $password = mysql_real_escape_string($_POST['password']);
  //if you have encryption, then make sure you do that here (md5 or whatever)
  //also, make sure you do validation of the input for SQL Injections and XSS attacks, but I'm not covering that here
  $query = "SELECT * FROM usertable WHERE username = '$username' AND password = '$password'";
  $result = mysql_fetch_array(mysql_query($query));
  $output = "<loginsuccess>";
  if(!$result) {
      $output .= "no";
      $output .= "</loginsuccess>";  
  } else {
      $output .= "yes";
      $output .= "</loginsuccess>";
  print ($output);
  ?>

• Re.... Elements 12... organizer will not upload media into the organizer...media is on hard drive

  how do I get classromm in a book media into the organizer?? All Lessons are on the hard drive but
  will not import media into organizer!! HELP

  What type of file are they?
  Can you see the folder in the left hand panel?
  If you can't see the folder list click on the two pins to expand the tree. Then right-click to add the contents.

• Unable Unlock a User when controlled organization is not assigned as Top

  Hi,
  When a admin user with controlled organization and organization other than top tries to unlock a user it is throwing an error as "user has no resources assigned".
  I tried assigning admin role with controlled orgnaization as Top:Example and controlled organizatios rule but still i am getting the same error.
  Please give me an solution

  Since you have synched the user with the same userID as that of the obsolete one. Now there exist 2 Users in LC.
  But the previous one is marked with Status as OBSOLETE while the recent with status as CURRENT.
  Could you please explain how are you fetching the User so that a task can be assigned?
  If you are using the Client side APIs to fecth the user, then make sure when using PrincipalSearchFilter you should use principalSearchFilter.setRetrieveOnlyActive().
  Have a look at the following JavaDoc,http://livedocs.adobe.com/livecycle/8.2/programLC/programmer/javadoc/index.html
  http://livedocs.adobe.com/livecycle/8.2/programLC/programmer/javadoc/com/adobe/idp/um/api/ infomodel/PrincipalSearchFilter.html#setRetrieveOnlyActive%28%29

• I am encountering crashes with Photoshop Elements 12.  If I uninstall and then reinstall the software, will I jeopardize the 100s of photo images I have already moved into the Organizer?  Any cautions for me

  I am encountering crashes with Photoshop Elements 12.  If I uninstall and then reinstall the software, will I jeopardize the 100s of photo images I have already moved into the Organizer?  Any cautions for me?

  If the app is designed correctly, the no, you won't. However, you'd have to ask the people who wrote the software, Adobe.

• I cannot import images from my camera directly into Elements Organizer

  I am trying to import images into Elements Organizer from my Canon EOS 6D, but it doesn't work properly. I am expecting the images to appear in the Elements Organizer, but the images are only imported onto disk. At the moment I have to re-import images from the disk location as a second step. How can I perform this in one step, as I have seen this in the tutorials?
  I am on a Mac using Yosemite using version 13 of Elements Organizer.

  There is no "into". LR and PS just reference your photos on the hard drive.
  When you import your photos "into" the LR catalog, LR can copy the images off your memory cards to the hard drive if you have not already copied them, but the photos are referenced by the LR catalog by the path and filename for the files.
  If you are having problems getting the images off the cards, what steps are you using and what error messages are you getting?

• Run Time Error when trying to get into the organizer

  Does anyone know when I keep getting a run time error when I'm trying to go into the organizer and how I get it to go away?

  The answer is that maybe someone does know ... but unless you give us the basic details of what you are doing, we probably can't help.
  So ...
  What version of PSE?
  What operating system?
  What is the EXACT word-for-word verbatim error you are seeing?
  Does any part of PSE (like the "splash" screen) pop up before this error? If so, describe it or give us a screen capture.
  Please provide all requested information.

• Error when trying to import users into Unity

  I keep getting this message when I try to bulk import the users into Unity.
  Has someone seen this, and do you have a fix.
  Could not insert new row - duplicate value in a UNIQUE INDEX column

  could you add more details likeunity vesion,
  how you doing bulk import?
  however you can try adding the user from the Import section for the
  voicemail