Role for User Administrator(Read only)

Similar Messages

• Oracle Role for User Administration

  Hello,
  I am a DBA. We have a separate group that maintains oracle user accounts within an oracle database. We would like that group to maintain users (add/remove users from database, add/remove roles, etc.) but we do not want to give them the 'DBA' role for security reasons. Ideally, we want to grant them a role that gives them the ability to administer users but not do anything else.
  Does a role like this exist within Oracle? If not is there a workaround to obtain this type of functionality?
  Thank you!

  Do you have this actually working? I have it complaining about permissions on the line that tries to create the user. I thought oracle restricted doing this for security reasons. I am creating this as a user with the 'DBA' role and then when I try to execute it as the same user (which can create users normally) I get this error:
  SQL> exec system.create_user('troy1','troy1');
  BEGIN system.create_user('troy1','troy1'); END;
  ERROR at line 1:
  ORA-01031: insufficient privileges
  ORA-06512: at "SYSTEM.CREATE_USER", line 4
  ORA-06512: at line 1
  And here is the code (based off of the example)...
  CREATE OR REPLACE PROCEDURE create_user( p_username IN VARCHAR2, p_password IN VARCHAR2 )
  AS
  BEGIN
  EXECUTE IMMEDIATE 'CREATE USER ' || p_username || ' IDENTIFIED BY ' || p_password || ' DEFAULT TABLESPACE users ';
  END;
  Any ideas?

• How to create a user with read only access for ESB / BPEL Console

  I need to create a user with read only access to ESB Console & BPEL Console. I have created a user
  (esbreadonly) and assigned ascontrol_monitor role but user is still able to
  delete services from ESB systems (such as DefaultSystem). Is there any way to
  create a user that has strickly read only access to ESB Console & BPEL
  Console
  Thanks
  Dinesh Patel

  Check out this post.. I'm in the process of testing.
  http://chintanblog.blogspot.com/2007/12/i-saw-numerous-people-asking-about-bpel_290.html

• Possible to make an item editable for certain users and read only for other

  Is it possible to make an item editable for certain users and read only for others?
  I've been able to accomplish this by taken the select statement that I used to define an authorization scheme, placing it in the Read Only condition of the item. However, I would like to simply reference the authorization scheme to utilize caching, and to help keep things cleaner for future maintenance.
  Is it possible to reference an authorization scheme in an item condition similar to the way another item can be referenced by preceding it with a colon (i.e. :P1_First_Name)?

  Thank you, your suggestion worked.
  It would be nice on a future release of APEX if a drop-down box existed under the Ready Only section that would allow an existing Authorization Scheme to be selected or negated when applying the Read Only attribute to a form item.

• I want to give a user to read only rights on sql server agent 2008

  I want to give a user to read only rights on sql server agent 2008.When I giving SQLAgentuser Role then user is only able to view SQL Server agent as Green but no job visible in job activity monitor.Currently he has db_reader rights on one user database.
  What rights should I give?
  Thanks

  There are 3 SQL server Agent fixed database roles in sql server.
  1.SQL AgentUSerRole:- To create and manage jobs
  2.SQLAgentReaderRole: To grant read acces.
  3.SQLAgentOperatorRole : to run and delete jobs.
  For you question you can create a user and grant him SQLAgentReaderRole.
  Example:
  Create LOGIN test with Password='abc'
  Use msdb;
  GO
  Create User test for login test
  use msdb;
  EXECUTE sp_addrolemember @rolename='SQLAgentReaderRole',@membername='test'
  Hope this solves your problem!!!

• I wan't setup for sccm 2012 read only console

  i wan't setup for sccm 2012 read only console

  There is role read only analyst please assign same to user or group.

• Visual Administrator Read Only Access

  Hi All,
     I need to give Visual Admin read only access to a developer.
     1. Is it possible ?
     2. If so what is the role to be given and where to configure this role ?
  Please help
  Thanks
  Sourav

  Hi sourav,
  If you want to give read access to the developers with regards to configurations details of the system or application modules and resources then this would be best accomplished through the use of NWA(Netweaver Administrator). Here you should be able to create a user and give them read only access.
  You can access it via http://hostname:5<system number>00/nwa of you Web AS Java.
  You can use the SAP_JAVA_NWADMIN_LOCAL_READONLY role or the central read-only role depending on your needs and configuration.
  Regards,
  Nelis

• User Administration: DISP Only

  Hi Experts,
  I am trying to give Content Admin Full access & for USER Admin DISPLAY Only.
  Am not getting this in combination.
  Can some one share your thoughts/suggestions pls?
  regards,
  Shawn.

  Hi Shawn,
  In the PCD, under the 'Portal Administrators' folder you would find both roles, Content Admin and User Admin in their respective folders. If you are going to make any changes to any of them, I suggest you copy both roles to a new namespace and then edit them accordingly.
  If you do not want to change the content admin role, you can assign it as-is to the user. For the User admin read-only access, make a copy of the User Admin role. Open the property editor for this copied role, and make the following changes
  1. Set the 'Manage_All' property to No
  2. Set the 'User_Viewer' property to Yes.
  This new role would act as a read-only user admin role. So now, you can assign this role and the original content admin role to the required user. You can leverage the other properties(java permissions) of the role to suit your requirements.The following link would be of help
  [http://help.sap.com/saphelp_nw70/helpdata/en/49/8b4659c793355ae10000000a42189b/frameset.htm]
  Hope it helps,
  Prathamesh
  Edited by: prathamesh dalvi on Oct 18, 2010 3:48 PM

• How to create fillable forms for users of reader IX or X in acrobat pro XI?

  I created fillable forms in Acrobat Pro XI. How can i make them fillable also for users with Reader IX or X? As Adobe Reader für Vista or Linux is only available in version IX or X, it is not possible for these users to fill in the forms?

  Open PDF Form in Acrobat XI then choose File > Save As Other > Reader Extended PDF > Enable More Tools (inclues form fill-in & save)...
  Then, save the form with new name and it's gonna work.
  Message was edited by: Anoop9178
  Edited the option.

• Cant get com.apple.security.files.user-selected.read-only entitlement to work

  Hey I am curious how can I get the .ipa compiled file for iOS to be able to read all the directories on the iPhone?
  I made a file browser but I cant get to the pictures
  I tried adding the entitlements in Flash Builder 4.6 in the descriptor file like this:
  <key>com.apple.security.files.user-selected.read-only</key>
  <true/>
  <key>com.apple.security.assets.movies.read-only</key>
  <true/>
  <key>com.apple.security.assets.pictures.read-only</key>
  <true/>
  in the
    <iPhone>
          <Entitlements>
          <![CDATA[
  I got Push notifications working and accepted in the app store but it can't read the pictures directory when browsing for a file
  I know the app id and stuff is set up right or I wouldnt have been able to get it accepted in the app store.  In the entitlements area of course I have the application identifier set and aps-environment and keychain access groups and whatnot set up right.
  When I try to put the app onto the iPhone with iTunes it just says 'Entitlements are not valid' (does not mention anything about mismatched ids) I can't find anything about how to add this entitlement and I could have sworn I saw a thing that said I can just use the descriptor file to add entitlements in some of the documentation I have it set to use air 3.4
  Is there something I am doing wrong, how do I get apple to just put these entitlements in the mobileprovision file, I cant seem to edit it, if I do I also get an error in itunes that is some hex code...

  Did you ever solve your problem?
  I just transfered my web hosting and e-mail to bluehost. I had some of the same problems you are having. I noticed you have your incoming server set to bluehost.
  Incoming mail server: (SSL) box610.bluehost.com (sever requires authentication which I already have done)
  If bluehost is your server this is what worked for me:
  Account Information
  Account type— POP
  Description—anything you want
  Email Address—in your case would be [email protected]
  Full name—  first and last name
  Incoming server—mail.magnus.com
  User name—[email protected] Notice it is the @ symbol not a +
  password— your password . Remember they are case sensitive
  Outgoing Mail server—select edit smpt server list from the drop down window
  select the + to add a server
  Account Information
  Description—may be left blank
  Server name—mail.magnus.com
  TSL Certificate—None
  Advanced
  Use default ports
  Check  Use SSL
  Authenticate—password
  Username—[email protected]
  passowrd—your password
  Click ok
  In the accounts window
  Outgoing SMTP— select the server you just created.
  Check—use only this server
  Select the Advance tab next to the Mailbox Behaviors
  Check use SSL— it will be port 995
  Authenticate —use password
  Ann

• User with read-only rights!

  Hello. i need to create user that have read only rights to every table on database, but only read only.
  Could you please provide a statment for that or a link where can i find that kind of information.

  Hi;
  Similar topic mention here many times. Please see:
  Read only user creation
  Read only user creation
  PS:Please dont forget to change thread status to answered if it possible when u belive your thread has been answered, it pretend to lose time of other forums user while they are searching open question which is not answered,thanks for understanding
  Regard
  Helios

• Changing role for users

  Hi,
  in forms 10g , it's possible to change the role for user
  REVOKE role_name FROM :USERNAME;

  This should work, but the user revoking a role from a different user needs to have the admin option of this role.
  When creating a role, by default the "Admin option" for that role should be enabled for the user creating the role.
  Normally, this would be the schema-owner of the application objects ...
  A user holding the "admin option" may grant a role to a different user and grant the other user "admin option" on this role...

• HI,how to find roles for user based on userid?

  hi,
  i need to find roles for each user based on user id.
  can i know any one knows this how to get roles for user?
  thanks,
  jpullareddy

  hi,
  i solve my self.
  i am getting values
  jpullareddy

• Read-Only Role For User Admin

  Hi, I am trying to implement a role that would enable a user to have the same functionality as the out-of-the-box User Admin role, but that this user would not be able to actually create or modify users, roles assignments, etc.
  The idea is to have a 'Display' role - with read-only access.
  The solution we are comtemplating right now involves getting the source code from SAP, copying it, and modifying it - disabling any interaction. We would then create new iviews, pages, etc from there only for this role. This is a tedious task.
  Any ideas on how else this can be done?
  Thanks

  I have only managed to do this by creating a role and assigning the relevant User Admin iViews to the role and then changing the End User Permissions on the role.
  I assigned the ReadAll Premission. That did the trick for me.
  Groups unfortunately require the manage_groups Permission, so we do not allow the viewing of groups.

• I can not find sap_bc _jsf_communication role for user sapjsf user

  hi Masters,
              when i am trying  to create user in portal, it showing error message. " an error occured in  persistence .Please contact system administrator"..
           i found there are no roles assigned to sapjsf user. we need sap_bc_jsf_communication role  for sapjsf  user.. But there are no roles assigned to sapjsf user.
  how can i assing the sap_bc_jsf_communicaiton role to sap jsf user. Pease give reply.
  POrtal and r3 are installed in one system only on db2 database.
  Edited by: sujana mullapudi on Dec 7, 2009 4:34 PM

  hi ,
  I have checked the sapjsf user roles  in su01 t-code- r3 side. for sap jsf user the two roles sap_bc_jsf_communication and another role sap_bc_jsf_communication_role(something Like). these two roles already exist for sapjsf user in r3 system.
  but in portal side the roles are not exist . can you tell me whats the reason, and please reply me.