Restiction on SAP Lumira user with BI_DATA_ANALYST role

Similar Messages

• Performance tab not working in Enterprise Manager for user with dba role

  Database: 11g2
  New to Oracle. Don't want share SYS user account among dbas. Tried to create user with dba role to perform all tasks.
  1. Removed DBMS_JOB, DBMS_LOB, UTL_FILE, UTL_HTTP, UTL_SMTP, and UTL_TCP from PUBLIC
  2. Created user dbauser1 with dba role
  3. Log in as dbauser1 in Enterprise Manager
  After click Performance tab, it just went straight to "Database Login" page. No error message.
  Any suggestions or advice will be appreciated.
  piaoma

  Hi Gourav,
  This is the wsdl url:
  http://hostname:8000/sap/bc/srt/wsdl/bndg_E04711310A0E55F1A0E3005056B03D6F/wsdl11/allinone/ws_policy/document?sap-client=450
  Kind Regards,
  Richard

• How i can associate my app user with database role

  In my application (oracle forms application developed in-house - We are using Oracle Forms 11gR2 with WebLogic 10.3.5 ), i want to use "application user" instead of database user.
  I have an application users table, actually, i have database users,and of course, menu application works with database roles (It was developed with oracle forms menu module), my question is, How i can associate my application user with database role, for reusing oracle forms menu funcionality?. It's possible?
  Thanks,
  Edward

  user8929172 wrote:
  In my application (oracle forms application developed in-house - We are using Oracle Forms 11gR2 with WebLogic 10.3.5 ), i want to use "application user" instead of database user.
  I have an application users table, actually, i have database users,and of course, menu application works with database roles (It was developed with oracle forms menu module), my question is, How i can associate my application user with database role, for reusing oracle forms menu funcionality?. It's possible?
  Hi Edward
  You can do this by assigning the role functionality to the application user. For example
  create the table to enter user name.
  create table to enter group name.
  create table to assign user to group.
  assign role to group.
  assign functionality for the user by coding.
  hope this helps

• SAP Lumira Query with SQL

  Hi we are doing a POC on SAP Lumira using Freehand SQL for our business users.
  We are trying to connect SQL Server 2012 / Oracle 12.
  Taking both the routes I am hitting the same roadblock.
  Java Class not found in classpath .com.microsoft.sqlserver.jdbc.SQLServerDriver.
  I downloaded both JDBC Driver 4.0 & 4.1 and tried to setup the jar executable but still I am getting the same error.
  Am i placing the driver in correct location.
  C:\Program Files\SAP Lumira\Desktop\plugins\com.businessobjects.connectionserver.standalone_3.2.4.B_20141030-231603\ConnectionServer\drivers\java
  I even tried completely copying the folder content of 4.0 & 4.1 to the following location after seeing salesforce folder there. We are able to connect to Salesforce without any issues.
  C:\Program Files\SAP Lumira\Desktop\plugins\com.businessobjects.connectionserver.standalone_3.2.4.B_20141030-231603\ConnectionServer\jdbc\drivers
  But I still end up with same error after installing the drivers from the preferences in LUMIRA.
  What am I missing do I need to EDIT any SBO file or Classpath XML file add the String for SQL Server for it to work correctly.
  Any help or guidance is appreciated.
  Best
  Monty.

  Hi Monty - please have a look at the Lumira PAM at support.sap.com/pam
  https://websmp201.sap-ag.de/~sapidb/011000358700001095842012E
  Pages 8- 9
  It references different JDBC drivers than you do - can you check?
  Source: SAP
  Source: SAP
  Just a thought.

• SAP Lumira Integration with ESRI Maps Issue

  Hello,
  I have created free trial ArcGIS online account and specified this user in SAP Lumira 1.20 build 36 Preferences / GEO Map Service.
  But when I try to visualize my Location data on Geo Map visualization I get an error message "Not a subscription user".
  Did anyone encountered this message? Maybe this message is related to Trial account type?
  Looking forward your feedback.

  Hi Manfred,
  Have you restarted Lumira? Also watch out for proxy configuration. see Lumira Timeout connecting to ESRI
  Good luck, and update the post with news!
  Regards,
  Antoine

• AD user with no role assignment cannot login

  We have created AD users that are being authenticated through OBIEE 11g. In the AD we currently have the user, password and group information associated with all the users created.
  As per system behavior if an user's group is not mapped to a role within the EM, it should automatically be tagged with the authenticated-role which being a part of the 'BIConsumer' role will give the corresponding privileges to that user. This does not seem to be happening. Any insights on why this would be the case?
  Additionally - If there is a group associated with a AD user within the active directory itself, is it mandatory that the AD groups be associated with a role? What I mean by this is, if we have RPD level init block to map authenticated users to custom database roles imported within the RPD and EM, would they not work unless there is a direct AD group to role assignment?

  The RPD had no access set for "Authenticated Users" and "BI Consumer Role" for all subject areas as part of the presentation layer permissions, hence unless a user was assigned to a role that could access either one of the subject areas the default authentication would not work.

• How add Authorization check for user with assigened role for t.code-MIR4

  Hi All,
  Regarding authorization how to check authorizations check for user whith assigned roles for the t.code MIR4  using ABAP.
  In Detail:2)     All users are allowed to go to MIR4(invoice number), But ONLY for users with role: MM_RELEASE_INVOICE can proceed to do the posting.
  suggest me...
  Thanks,
  srii..

  Hi Sri ,
  first u need to find out  in which user rules u are using this object , after that if u want to restrict users then remove create/change values from that object values .
  make use of Tcode SUIM to find out all roles which are using this Object.
  or
  ask ur basis guy to remove authorizations to create/change....
  regards
  Prabhu

• Mitigation runs against role but not user with same role assignment

  Hello, I'm currently running Compliance Calibrator 4.0. I've created a Mitigation Control and assigned a number of Risks to the Mitigation Control.
  I've then assigned the Risks in that Mitigation Control to a specific role.
  When I run the SoD check, the role no longer shows any issues. This is good and expected.
  However, when I run the SoD against a user that has that role assigned the user is reported with issues when no SoD issues should be shown.
  Am I missing something? I don't believe I need to assign Mitigation Control to the user, because one day the risk might be valid to that user, but just not for the role I'm trying to mitigate against. Many thanks.

  Hi Dylan, the system is reacting correctly.
  When you mitigate a role, you mitigate the risk associated with the role and under 'Role Analysis' you will see that this role has been mitigated.
  However when u run a User analysis, the system will still identify him if there is a 'RISK' associated with the user and this is regardless of whether the associated Role is mitigated or not because what you want to know is the risk of the user and not what roles this user has.
  You will need to specifically mitigate the User in order for the mitigation control to show against the User in the report.
  This is the same Vice Versa. when you mitigate a User, it also does not mean that all the associated Roles that the user have are mitigated. The risk associated with the roles will still appear when you do 'Role Analysis'
  Cheers!

• CISCOWORKS LMS and CISCOSECURE ACS Authenticate any user with HD role

  Hi:
  We are using CiscoSecure for authentication and authorization for differente apps.
  Specifically, any user already in the ACS database is authenticated to log in CiscoWorks LMS, with HD role (this happens although none of the CiscoWorks apps have been checked for this group). 
  Why is this happening?
  We don´t want that any user (although they are only permitted the HD role) could login.
  Thanks a lot
  Julio

  Follow the ACS integration guide to ensure the group you don't want to have access to LMS have the roles set to "NONE" instead of the default HD roles.
  http://www.cisco.com/en/US/partner/prod/collateral/netmgtsw/ps6504/ps6528/ps2425/prod_white_paper0900aecd80613f62.html

• How to uplode user with more roles by Users_gen?

  Hi, everyone,
       I can uplode users by user_gen ,but only one role,  I don't know what format to more roles.
       anyone  tells me ,I will give points to reward.
  the format with one role:
  C00213452,Benali,50000001,dd'@'dd.com,CN,SAP_EC_BBP_BIDDER
  Best regards!
  Jesse

  Hi,Nanaji.V
  I know the way that you say.   I think it still cann't solve my question. could you please explain your way detailed?
  Best regards
  Jesse

• Unable to Schedule the Report with a user with Author Role.

  Hi,
  I tried to Schedule the Report using weblogic user(which has admin role) it worked perfectly. But when i try to login using User(which has author role) and when i try to schedule a report i am getting the following error. It is clustered Environment.
  [nQSError: 77006] Oracle BI Presentation Server Error: A fatal error occurred while processing the request. The server responded with: Authentication Failure.
  Error Codes: IHVF6OM7:OPR4ONWY:U9IM8TAC
  Location: saw.connectionPool.getConnection, saw.securitysubsystem.checkauthentication.runimpl, saw.securitysubsystem.checkauthentication, saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Odbc driver returned an error (SQLDriverConnectW).
  State: 08004. Code: 10018. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused.
  [nQSError: 43113] Message returned from OBIS.
  [nQSError: 13039] The impersonator does not exist in the BI Security Service. (08004)
  Error Codes:
  Location: saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Error Codes: AGEGTYVF
  AgentID: /users/richard/Test Mail Report
  ...Trying Agent Get Response Content loop again.... Sleeping for 8 seconds.[nQSError: 77006] Oracle BI Presentation Server Error: A fatal error occurred while processing the request. The server responded with: Authentication Failure.
  Error Codes: IHVF6OM7:OPR4ONWY:U9IM8TAC
  Location: saw.connectionPool.getConnection, saw.securitysubsystem.checkauthentication.runimpl, saw.securitysubsystem.checkauthentication, saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Odbc driver returned an error (SQLDriverConnectW).
  State: 08004. Code: 10018. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused.
  [nQSError: 43113] Message returned from OBIS.
  [nQSError: 13039] The impersonator does not exist in the BI Security Service. (08004)
  Error Codes:
  Location: saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Error Codes: AGEGTYVF
  AgentID:/users/richard/Test Mail Report
  ...Trying Agent Get Response Content loop again.... Sleeping for 6 seconds.[nQSError: 77006] Oracle BI Presentation Server Error: A fatal error occurred while processing the request. The server responded with: Authentication Failure.
  Error Codes: IHVF6OM7:OPR4ONWY:U9IM8TAC
  Location: saw.connectionPool.getConnection, saw.securitysubsystem.checkauthentication.runimpl, saw.securitysubsystem.checkauthentication, saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Odbc driver returned an error (SQLDriverConnectW).
  State: 08004. Code: 10018. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused.
  [nQSError: 43113] Message returned from OBIS.
  [nQSError: 13039] The impersonator does not exist in the BI Security Service. (08004)
  Error Codes:
  Location: saw.delivers.rpc.getDeviceContent, saw.rpc.server.responder, saw.rpc.server, saw.rpc.server.handleConnection, saw.rpc.server.dispatch, saw.threadpool.socketrpcserver, saw.threads
  Error Codes: AGEGTYVF
  AgentID: /users/richard/Test Mail Report
  Exceeded number of request retries for method GetResponseContent.
  Can any one help me with this.
  Thanks
  Rondo.
  Edited by: RONDO on Dec 12, 2012 4:07 PM

  Check the Doc ID 1446877.1
  As per this doc Fix to apply patch 13553428:
  The fix to this issue is to apply patch for the following unpublished bug.
  Bug 13553428 - QA:BLK:DELIVER TO CORP. OID LDAP USERS FAILED WITH IMPERSONATOR DOES'NT EXIST.
  Patch 13553428: QA:BLK:DELIVER TO CORP. OID LDAP USERS FAILED WITH IMPERSONATOR DOES'NT EXIST.
  The patch is available on MOS and can be applied to all platforms.
  Or access via this link:
  https://updates.oracle.com/Orion/Services/download/p13553428_111160_Generic.zip?aru=14732325&patch_file=p13553428_111160_Generic.zip
  Please refer to the Readme. It is important to Stop the System before applying the patch. Then restart.
  During restart Weblogic should automatically detect that bimiddleware.ear has changed in the OH and automatically redeploy the application
  If helps pls mark as correct
  Edited by: Srini VEERAVALLI on Dec 12, 2012 7:39 PM

• Users with same role but cannot acess/see the restrcited page

  Hi, SDN Fellows.
  I have a requirement as stated below:
  Said, I have Role A, which have WorksetA , that contains Page1, Page2,Page3.
  The requirement is: User A was assigned to RoleA, he can see all the pages in the role hierarchy.
  But User B was assigned to RoleA too, but I want to restricted this user to see Page3.
  In this, case, how should I manage that? Can we set some authorization from the page? If yes,  is it going to be troublesome for the system admin to maintain that?
  Thanks.
  Kent

  Hi Kent,
  > Can we set some authorization from the page?
  No, you can't. Permissions ar set on the unique object within the PCD, this is the role in your case.
  The standard scenario is to create two roles A and B, where user A is assigned to both roles and user B only to role B. Role B contains WorksetA and Page3, whereas role A contains WorksetA and Pages 1 & 2 -- an both roles are merged.
  By this, you have one navigation structure but user B only sees page3, whereas user A sees all three pages under the workset entry (from the navigational point of view).
  See http://help.sap.com/saphelp_nw04s/helpdata/en/53/89503ede925441e10000000a114084/frameset.htm for details.
  Hope it helps
  Detlev

• Multiple UWL for the single user with different Role

  Dear SAP Gurs,
  We have one critical requirement on the Universal worklist, as a functional requirement like some Approvers will play different roles as approver, needs to track saperately the approver inboxes for the same person.
  For Example :
  Approver A - is an Purchase Exicutive(Role)
  Approver B - Is an Purchase Manager(Role)
  Every time Apporver A has to access his approval requests seperately ( Belongs to Approver A) and take action, as well Approver A has to see Approver B's actions items seperatly and take action.
  currently we have 4 levels available and single person has to take action on based on the 4 different Approves(Role)
  Is there any work around for the abobe requirement.
  Thanks in advance,
  Vinod
  Edited by: Vinod Malagi on Jul 20, 2010 3:33 PM

  Hi Karri,
  The same requirement i want to tweak in by adding one more column in the UWL by enhancing the BOR.
  i have try with below , can you please suggenst can be done by Virtual attributes.
  Once data is comming in the UWL i will put 3 custome filters
  We need to add a new column in UWL, which is present as a Table SWWORGTASK, in this we have to pass WI_ID and get ORG_OBJ populate it as a column in UWL.
  Please suggent how can we impliment this ? do we needs to create virtual ttribute in the BOR from the same.
  as we have reffered the below link, we are not able to implimant the same. Kindly suggest.
  http://www.erpgenie.com/sap/abap/bor.htm
  Thanks in advance
  Vinod

• Mapping of users with roles

  Hi, in oracle BPM there is a mapping of user with the roles.I have search the BPM database tables in dev_soainfra schema but no tables consists of mapping of these tables.I have a urgent requirement of it so that i can use it on adf form.
  Can anyone plz tell me where to get it.
  =>I got the Organization.XML file in BPM which consists of the mapping of these two.But i am not able to create datacontrol from xml file so that it can be used on adf form.Anyone plz help me out.
  Thanks

  Hi.
  What is the BPM product version (10g or 11g)?

• Mapping of users with roles in BPM

  Hi, in oracle BPM there is a mapping of user with the roles.I have search the BPM database tables in dev_soainfra schema but no tables consists of mapping of these tables.I have a urgent requirement of it so that i can use it on adf form.
  Can anyone plz tell me where to get it.
  =>I got the Organization.XML file in BPM which consists of the mapping of these two.But i am not able to create datacontrol from xml file so that it can be used on adf form.Anyone plz help me out.
  Thanks

  BPM Roles are in turned mapped to Application Roles and the users are added to these application roles. So I don't think it is available in DB. You might need to get it from Application Roles using OPSS API if available or system-jazn-data.xml (if you policy store is file based) or from your LDAP.