Samba - disabling access for certain users on domain member servers
Hi all!
I'm running a small network that has domain logons for windows clients and I want to have single sign on (samba shares and shell accounts) on those three servers I'm running. The problem is, I don't want to allow all users to access all servers.
I have the samba running tdbsam password backend. Do I have to use ldap backend to achieve this or is it possible to do using tdbsam backend? I'd prefer to have all configuration concerning windows domain and passwords in one place...
Tomato
Hi LMS,
I’m writing to just check in to see if the suggestions were helpful. If you need further help, please feel free to reply this post directly so we will be notified to follow it up.
If you have any feedback on our support, please click here.
Best Regards,
Anna Wang
TechNet Community Support
Similar Messages
-
Password protect/disable printers for certain users under ML 10.8
I am looking for a solution to prevent my youger pupils to print everything without asking me. Is there a solution to protect/disable printers for certain users under ML 10.8 ?
Ok. The sharing interface is not robust enough (by itself) to password challenge print jobs. You may need to look at another printing technology known as CUPS. Apple created this for advanced print configuration, and it does offer Kerberos security with printing password challenges. I do not know if OS X server offers more granularity in configuration.
I won't be able to help you with the following as I do not use the CUPS printing solution here.
In Safari, type in the following and press return.
localhost:631
You will see a tabbed browser interface. And a bit of light reading ... -
Disabling dropbox for certain users?
is there a way I can disable dropbox for one user and allow it for other user on the same machine, and if yes, how?
thank you
Last edited by pootzko (2008-09-30 20:20:20)http://forums.getdropbox.com/topic.php? … post-22888
-
Password protect/disable printers for certain users
is there a way to password protect or disable a printer to prevent other users from using the printer. my sister has used up 4 ink cartridges in a month! i just realized this in when i tried to print something. GONE.
thanks
BradKirály wrote:
First make sure your sister is not using an admin account. Then download and install the Leopard Server Admin Tools from Apple.
That will work, but is perhaps a bit of overkill with OS X 10.5. To deny specific users from printing, just go use the web interface for the printing system. Go to _http://127.0.0.1:631/printers/_. Find your printer and click on *Set Allowed Users*. Just follow the directions. You will need to authenticate with the short user name and password for an administrator's account.
Matt
Message was edited by: Matt Broughton -
Can OneDrive for Business be disabled for certain users?
Is it possible to disable OneDrive for Business for certain users? If so, how? Thanks.
you can remove the OneDrive for Business client for the certain users from their computers so that they cannot use it.
http://community.office365.com/en-us/f/156/t/192252.aspx
http://www.askvg.com/what-is-skydrive-pro-option-and-how-to-remove-it-from-context-menu-after-installing-microsoft-office-2013/
My Blog- http://www.sharepoint-journey.com|
If a post answers your question, please click Mark As Answer on that post and Vote as Helpful -
Looking for an AIR Native Extension for iOS that will allow / disable access to certain apps
I am looking to find and or create an ANE that will allow access and or disable access to certain apps such as internet, text, games, vine etc. This url represents the closest app to what I am trying to achieve: https://itunes.apple.com/us/app/parentkit/id600618138?ls=1&mt=8
Is this possible with iOS7 new features / AIR / older iOS?
As always any and all direction and help is greatly appreciated,
Thanks!Is this the wrong forum, or posting area? Is this possible?
Access to the followinf would work:
http://support.apple.com/kb/HT4213
Is this open for development / access to, api?
Message was edited by: studiobrain -
Disabling cprojects alerts for certain users only
Hi
I need that no email alerts are sent to certain roles/people who have authorizations in cprojects. There are numerous alerts sent as email for any change of dates, thresholds etc. I need to disbale any email being sent in this for certain users.
How can it be done?
Regards
SenthilHi Senthil,
Would you please check the following
Evaluations -> Business Add-Ins (BAdIs) -> Change Alerts from Severities in cProjects
related method is CHANGE_ALERTS_OF_PROJECT, which has a change parameter:
CT_LANGUAGE_OF_RECIPIENT. You can apply your own logic to remove some recipient of the table, so that they do not get the e-mail.
Never tested, please check it out.
Kind regards,
Zhenbo -
Disable sound for specific users
How do I disable sound for specific users?
Theoretically if the user's not in the audio group, he shouldn't have access to sound devices.
$ ll /dev/snd/
total 0
drwxr-xr-x 2 root root 80 Oct 2 19:30 by-path
crw-rw----+ 1 root audio 116, 2 Oct 2 19:30 controlC0
crw-rw----+ 1 root audio 116, 8 Oct 2 19:30 controlC1
crw-rw----+ 1 root audio 116, 7 Oct 2 19:30 hwC0D0
crw-rw----+ 1 root audio 116, 13 Oct 2 19:30 hwC1D0
crw-rw----+ 1 root audio 116, 14 Oct 2 19:30 hwC1D1
crw-rw----+ 1 root audio 116, 15 Oct 2 19:30 hwC1D2
crw-rw----+ 1 root audio 116, 16 Oct 2 19:30 hwC1D3
crw-rw----+ 1 root audio 116, 4 Oct 4 09:12 pcmC0D0c
crw-rw----+ 1 root audio 116, 3 Oct 4 10:13 pcmC0D0p
crw-rw----+ 1 root audio 116, 5 Oct 2 19:30 pcmC0D1p
crw-rw----+ 1 root audio 116, 6 Oct 2 19:30 pcmC0D2c
crw-rw----+ 1 root audio 116, 9 Oct 2 19:30 pcmC1D3p
crw-rw----+ 1 root audio 116, 10 Oct 2 19:30 pcmC1D7p
crw-rw----+ 1 root audio 116, 11 Oct 2 19:30 pcmC1D8p
crw-rw----+ 1 root audio 116, 12 Oct 2 19:30 pcmC1D9p
crw-rw----+ 1 root audio 116, 1 Oct 2 19:30 seq
crw-rw----+ 1 root audio 116, 33 Oct 2 19:30 timer -
Forward mail to MS Exchange for certain users
Hello.
We have a "master" Oracle Messaging Exchange Server and we have recently installed a Microsoft Messaging Server. We need certain users to use MS Exchange. The idea is changing mailHost LDAP attribute for those users (let's take [email protected] as an example), setting the MS Exchange HUB server, let's say hub.domain.com (mailHost: hub.domain.com). Doing so, mails sent to [email protected] are sent to hub.domain.com using lmtp channel. Everything works fine except for an issue: MS Exchange sees the from address like "user@lmtpcs-daemon", so we have to configure MS Exchange to use "lmtpcs-daemon" as secondary domain of domain.com, otherwise it doesn't know what to do with those mails.
Is there a way to not do that rewrite for certain users? Or maybe can we create a new channel to forward mails to Exchange? Could we define a channel depending on mailHost value or something like that?
Any thoughts?
Thank you very much.Thank you very much for your inputs.
It's being quite difficult for me to understand this whole mail routing thing. According to the documentation:
"The handling of a missing mailhost attribute is different depending on whether the entry is a user or a group. In the case of a user, a mailhost is essential, so if no mailhost attribute is present a new address of the form
@smarthost:user@domain
is constructed using the smart host for the domain determined by the LDAP_DOMAIN_ATTR_SMARTHOST MTA option"
Sounds good, it seems that I just need to delete mailHost attribute for the users who need to use Exchange and set LDAP_DOMAIN_ATTR_SMARTHOST in option.dat. I've tried that but I get a "4.0.0 temporary error returned by alias expansion" when I send a mail to the test user.
I've deleted the LDAP_DOMAIN_ATTR_SMARTHOST line and I've set mailRoutingSmartHost LDAP attribute for the user but I get the same result.
I'm not even sure about the mailRoutingSmartHost format. This is what I have:
mailRoutingSmartHost: correoweb.saludcastillayleon.es
root@MTA1 # imsimta test -rewrite -debug [email protected]
Initializing mm_.
Initializing mm_ submission.
Checking identifiers.
*** Debug output from initializing MM for submission:
09:49:06.60: Debug output enabled, system MTA1.domain.com, process 41f0.1, message enqueue routines version V6.3 compiled Mar 14 2008 17:07:19
09:49:06.60: mmc_winit('l','[email protected]','[email protected]') called.
09:49:06.60: Address reversal invoked on [email protected], force reverse URL 1, capture 1
09:49:06.60: Rewriting: Mbox = "postmaster", host = "mta1.domain.com", domain = "$*", literal = "", tag = ""
09:49:06.60: Rewrite: "$*", position 0, hash table -
09:49:06.60: Found: "$A$E$F$U%[email protected]"
09:49:06.60: Rewrite failed, not forward.
09:49:06.60: Rewrite: "$*", position 1, hash table -
09:49:06.60: Failed.
09:49:06.60: Rewrite: "$*", position 0, rewrite database -
09:49:06.60: Failed
09:49:06.60: Rewriting: Mbox = "postmaster", host = "mta1", domain = "mta1.domain.com", literal = "", tag = ""
09:49:06.60: Rewrite: "mta1.domain.com", position 0, hash table -
09:49:06.60: Found: "$U%[email protected]"
09:49:06.60: New mailbox: "postmaster".
09:49:06.60: New host: "mta1.domain.com".
09:49:06.60: New route: "mta1.domain.com".
09:49:06.60: New channel system: "mta1.domain.com".
09:49:06.60: Looking up host "mta1.domain.com".
09:49:06.60: - found on channel l
09:49:06.60: Routelocal flag set; scanning for % and !
09:49:06.60: Checking reverse URL cache for: [email protected]
09:49:06.60: Applying reverse URL pattern ldap:///$V?$N?sub?$R to: [email protected]
09:49:06.68: URL generation failed, status = 0
09:49:06.68: Mapped return address: [email protected]
09:49:06.68: from_access mapping check: ||MAIL|l|[email protected]|
09:49:06.68: Queue area size 145940970, temp area size 21837182
09:49:06.68: 36485242 blocks of effective free queue space available; setting disk limit accordingly.
09:49:06.68: 10918591 blocks of free temporary space available; setting disk limit accordingly.
09:49:06.68: - passed.
09:49:06.68: Rewriting: Mbox = "postmaster", host = "mta1.domain.com", domain = "$*", literal = "", tag = ""
09:49:06.68: Rewrite: "$*", position 0, hash table -
09:49:06.68: Found: "$A$E$F$U%[email protected]"
09:49:06.68: Rewrite failed, not forward.
09:49:06.68: Rewrite: "$*", position 1, hash table -
09:49:06.68: Failed.
09:49:06.68: Rewrite: "$*", position 0, rewrite database -
09:49:06.68: Failed
09:49:06.68: Rewriting: Mbox = "postmaster", host = "mta1", domain = "mta1.domain.com", literal = "", tag = ""
09:49:06.68: Rewrite: "mta1.domain.com", position 0, hash table -
09:49:06.68: Found: "$U%[email protected]"
09:49:06.68: New mailbox: "postmaster".
09:49:06.68: New host: "mta1.domain.com".
09:49:06.68: New route: "mta1.domain.com".
09:49:06.68: New channel system: "mta1.domain.com".
09:49:06.68: Looking up host "mta1.domain.com".
09:49:06.68: - found on channel l
09:49:06.68: Routelocal flag set; scanning for % and !
*** Debug output from rewriting a forward header address:
09:49:06.68: Rewriting: Mbox = "user", host = "domain.com", domain = "$*", literal = "", tag = ""
09:49:06.68: Rewrite: "$*", position 0, hash table -
09:49:06.68: Found: "$A$E$F$U%[email protected]"
09:49:06.68: Rewrite failed, not envelope.
09:49:06.68: Rewrite: "$*", position 1, hash table -
09:49:06.68: Failed.
09:49:06.68: Rewrite: "$*", position 0, rewrite database -
09:49:06.68: Failed
09:49:06.68: Rewriting: Mbox = "user", host = "saludcastillayleon", domain = "domain.com", literal = "", tag = ""
09:49:06.68: Rewrite: "domain.com", position 0, hash table -
09:49:06.68: Found: "$U%[email protected]"
09:49:06.68: New mailbox: "user".
09:49:06.68: New host: "domain.com".
09:49:06.68: New route: "mta1.domain.com".
09:49:06.68: New channel system: "mta1.domain.com".
09:49:06.68: Looking up host "mta1.domain.com".
09:49:06.68: - found on channel l
09:49:06.68: Routelocal flag set; scanning for % and !
09:49:06.68: Rewriting: Mbox = "user", host = "domain.com", domain = "$*", literal = "", tag = ""
09:49:06.68: Rewrite: "$*", position 0, hash table -
09:49:06.68: Found: "$A$E$F$U%[email protected]"
09:49:06.68: Rewrite failed, not envelope.
09:49:06.68: Rewrite: "$*", position 1, hash table -
09:49:06.68: Failed.
09:49:06.68: Rewrite: "$*", position 0, rewrite database -
09:49:06.68: Failed
09:49:06.68: Rewriting: Mbox = "user", host = "domain", domain = "domain.com", literal = "", tag = ""
09:49:06.68: Rewrite: "domain.com", position 0, hash table -
09:49:06.68: Found: "$U%[email protected]"
09:49:06.68: New mailbox: "user".
09:49:06.68: New host: "domain.com".
09:49:06.68: New route: "mta1.domain.com".
09:49:06.68: New channel system: "mta1.domain.com".
09:49:06.68: Looking up host "mta1.domain.com".
09:49:06.68: - found on channel l
09:49:06.68: Routelocal flag set; scanning for % and !
09:49:06.68: Rewrite rules result: [email protected]
09:49:06.68: Checking reverse URL cache for: [email protected]
09:49:06.68: Applying reverse URL pattern ldap:///$V?$N?sub?$R to: [email protected]
09:49:06.69: Resulting URL: ldap:///o%3Ddomain.com?preferredlanguage,mailmsgmaxblocks,mail,mailalternateaddress,mailequivalentaddress?sub?(|([email protected])([email protected])([email protected]))
09:49:06.69: mmc_open_url called to open ldap:///o%3Ddomain.com?preferredlanguage,mailmsgmaxblocks,mail,mailalternateaddress,mailequivalentaddress?sub?(|([email protected])([email protected])([email protected])), flags = 384
09:49:06.69: URL with quotes stripped: ldap:///o%3Ddomain.com?preferredlanguage,mailmsgmaxblocks,mail,mailalternateaddress,mailequivalentaddress?sub?(|([email protected])([email protected])([email protected]))
09:49:06.69: LDAP URL identified
09:49:06.69: URL context #1 will be used
09:49:06.69: Performing URL search on: ldap:///o%3Ddomain.com?preferredlanguage,mailmsgmaxblocks,mail,mailalternateaddress,mailequivalentaddress?sub?(|([email protected])([email protected])([email protected]))
09:49:06.70: mmc_read_url result: [uid=user, ou=People, o=domain.com]
09:49:06.70: URL resolution returned: [uid=user, ou=People, o=domain.com]
09:49:06.70: mmc_read_url result: [preferredlanguage] en
09:49:06.70: URL resolution returned: [preferredlanguage] en
09:49:06.70: Attribute index: 0
09:49:06.70: LDAP URL produced preferred language en
09:49:06.70: mmc_read_url result: [mail] [email protected]
09:49:06.70: URL resolution returned: [mail] [email protected]
09:49:06.70: Attribute index: 0
09:49:06.70: LDAP URL produced address [email protected]
09:49:06.70: mmc_read_url result: [mailalternateaddress] [email protected]
09:49:06.70: URL resolution returned: [mailalternateaddress] [email protected]
09:49:06.70: Attribute index: 0
09:49:06.70: Alternate address [email protected]
09:49:06.70: No more results to return
*** Debug output from rewriting a forward envelope address:
09:49:06.70: Rewriting: Mbox = "user", host = "domain.com", domain = "$*", literal = "", tag = ""
09:49:06.70: Rewrite: "$*", position 0, hash table -
09:49:06.70: Found: "$A$E$F$U%[email protected]"
09:49:06.70: Match, pattern = "domain.com", current = "(*domaincheck*)"
09:49:06.70: old state = not checked.
09:49:06.70: Domain check on domain.com.
09:49:06.70: Added domain result 1 to cache for domain.com.
09:49:06.70: new state = succeeded.
09:49:06.70: New mailbox: "user".
09:49:06.70: New host: "domain.com".
09:49:06.70: New route: "mta1.domain.com".
09:49:06.70: New channel system: "mta1.domain.com".
09:49:06.70: Looking up host "mta1.domain.com".
09:49:06.70: - found on channel l
09:49:06.70: Routelocal flag set; scanning for % and !
address channel = l
forward channel = l
channel description =
channel caption =
channel user filter =
dest channel filter =
source channel filter =
channel flags #0 = BIDIRECTIONAL MULTIPLE IMMNONURGENT NOSERVICEALL
channel flags #1 = NOSMTP DEFAULT
channel flags #2 = COPYSENDPOST COPYWARNPOST POSTHEADONLY HEADERINC NOEXPROUTE
channel flags #3 = LOGGING NORESTRICTED RETAINSECURITYMULTIPARTS
channel flags #4 = EIGHTBIT HEADERKEEPORDER NOHEADERREAD RULES
channel flags #5 = TRUNCATESMTPLONGLINES
channel flags #6 = LOCALUSER REPORTNOTARY
channel flags #7 = NOSWITCHCHANNEL NOREMOTEHOST DATEFOUR DAYOFWEEK
channel flags #8 = NODEFRAGMENT EXQUOTA REVERSE NOCONVERT_OCTET_STREAM
channel flags #9 = NOTHURMAN INTERPRETENCODING USEINTERMEDIATE RECEIVEDFROM VALIDATELOCALSYSTEM NOTURN
defaulthost = domain.com domain.com
linelength = 1023
channel env addr type = SOURCEROUTE
channel hdr addr type = SOURCEROUTE
channel official host = mta1.domain.com
channel after params =
channel user name =
urgentnotices = 1 2 4 7
normalnotices = 1 2 4 7
nonurgentnotices = 1 2 4 7
channel rightslist ids =
local behavior flags = %x7
expandchannel =
notificationchannel =
dispositionchannel =
saslswitchchannel =
tlsswitchchannel =
backward channel = l
unique identifier = [email protected]
header forward address = [email protected] (route (mta1.domain.com,mta1.domain.com)) (host domain.com)
header reverse address = [email protected]
envelope forw address = [email protected] (route (mta1.domain.com,mta1.domain.com)) (host domain.com)
envelope rev address = [email protected] (route (mta1.domain.com,mta1.domain.com)) (host domain.com)
name =
mbox = user
Extracted address action list:
[email protected]
Extracted 733 address action list:
[email protected]
Address list expansion:
*** Debug output from alias expansion:
09:49:06.70: Inner expand, level = 0, mailbox = [email protected]
09:49:06.70: Rewriting: Mbox = "user", host = "domain.com", domain = "$*", literal = "", tag = ""
09:49:06.70: Rewrite: "$*", position 0, hash table -
09:49:06.70: Found: "$A$E$F$U%[email protected]"
09:49:06.70: Match, pattern = "domain.com", current = "(*domaincheck*)"
09:49:06.70: old state = not checked.
09:49:06.70: Using result 1 from domain match cache.
09:49:06.70: new state = succeeded.
09:49:06.70: New mailbox: "user".
09:49:06.70: New host: "domain.com".
09:49:06.70: New route: "mta1.domain.com".
09:49:06.70: New channel system: "mta1.domain.com".
09:49:06.70: Looking up host "mta1.domain.com".
09:49:06.70: - found on channel l
09:49:06.70: Routelocal flag set; scanning for % and !
09:49:06.70: Reparsed mailbox: user
09:49:06.70: Reparsed host: domain.com
09:49:06.70: Variant #1 = [email protected]
09:49:06.70: Variant #2 = *@domain.com
09:49:06.70: Alias magic value 8764
09:49:06.70: LDAP URL template identified
09:49:06.70: URL determined to be: ldap:///o%3Ddomain.com?*?sub?(|([email protected])([email protected])([email protected]))
09:49:06.70: URL context #1 will be used
09:49:06.70: Performing URL search on: ldap:///o%3Ddomain.com?objectclass,inetuserstatus,mailuserstatus,inetMailGroupStatus,uid,preferredLanguage,mailRoutingAddress,mailMsgMaxBlocks,mail,mailAlternateAddress,mailEquivalentAddress,mailDeliveryOption,vacationStartDate,vacationEndDate,mailConversionTag,mailhost,mailQuota,mailMsgQuota,mailProgramDeliveryInfo,mailDeliveryFileURL,mailDeliveryFile,mailAutoReplyMode,mailAutoReplySubject,mailAutoReplyText,mailAutoReplyTextInternal,mailAutoReplyTimeOut,mailSieveRuleSource,mailForwardingAddress,mailDeferProcessing,mgrpMsgRejectAction,mgrpRejectText,mgrpMsgRejectText,mgrpBroadcasterPolicy,mgrpDisallowedBroadcaster,mgrpAllowedBroadcaster,mgrpDisallowedDomain,mgrpAllowedDomain,mgrpMsgMaxSize,mgrpAuthPassword,mgrpModerator,mgrpDeliverTo,memberURL,UniqueMember,mgrpRFC822MailMember,rfc822MailMember,mgrpErrorsTo,mgrpAddHeader,mgrpRemoveHeader,mgrpMsgPrefixText,mgrpMsgSuffixText,mgmanMemberVisibility,expandable?sub?(|([email protected])(mailAlternateAddress=user@09:49:06.72: Scanning LDAP result.
09:49:06.72: Attribute: objectclass
09:49:06.72: Attribute index: 0
09:49:06.72: Attribute: inetuserstatus
09:49:06.72: Attribute index: 1
09:49:06.72: Attribute: mailuserstatus
09:49:06.72: Attribute index: 2
09:49:06.72: Attribute: uid
09:49:06.72: Attribute index: 5
09:49:06.72: Attribute: preferredLanguage
09:49:06.72: Attribute index: 19
09:49:06.72: Attribute: mail
09:49:06.72: Attribute index: 31
09:49:06.72: Attribute: mailAlternateAddress
09:49:06.72: Attribute index: 32
09:49:06.72: Attribute: mailDeliveryOption
09:49:06.72: Attribute index: 34
09:49:06.72: Attribute: mailQuota
09:49:06.72: Attribute index: 51
09:49:06.72: Attribute: mailAutoReplyMode
09:49:06.72: Attribute index: 55
09:49:06.72: Attribute: mailForwardingAddress
09:49:06.72: Attribute index: 64
09:49:06.72: Attribute: mailDeferProcessing
09:49:06.72: Attribute index: 65
09:49:06.72: Scanning complete, begin actions
09:49:06.72: Possible user object classes: inetLocalMailRecipient+inetmailuser
09:49:06.72: Possible group object classes: inetLocalMailRecipient+inetmailgroup
09:49:06.72: Object class: top
09:49:06.72: Object class didn't match
09:49:06.72: Object class: person
09:49:06.72: Object class didn't match
09:49:06.72: Object class: inetuser
09:49:06.72: Object class didn't match
09:49:06.72: Object class: organizationalperson
09:49:06.72: Object class didn't match
09:49:06.72: Object class: inetorgperson
09:49:06.72: Object class didn't match
09:49:06.72: Object class: ipuser
09:49:06.72: Object class didn't match
09:49:06.72: Object class: inetmailuser
09:49:06.72: Object class match, reference value 1
09:49:06.72: Object class: inetlocalmailrecipient
09:49:06.72: Object class match, reference value 18
09:49:06.72: Object class: userpresenceprofile
09:49:06.72: Object class didn't match
09:49:06.72: Object class: inetsubscriber
09:49:06.72: Object class didn't match
09:49:06.72: Object class: icscalendaruser
09:49:06.72: Object class didn't match
09:49:06.72: Object class: iplanet-am-managed-person
09:49:06.72: Object class didn't match
09:49:06.72: Object class: iplanet-am-user-service
09:49:06.72: Object class didn't match
09:49:06.72: Object class: iplanetpreferences
09:49:06.72: Object class didn't match
09:49:06.72: Object class: inetadmin
09:49:06.72: Object class didn't match
09:49:06.72: Object class: sunamauthaccountlockout
09:49:06.72: Object class didn't match
09:49:06.72: Object class: sunUCPreferences
09:49:06.72: Object class didn't match
09:49:06.72: Object class: mailDomain
09:49:06.72: Object class didn't match
09:49:06.72: User/group index = 1
09:49:06.72: Domain is active
09:49:06.72: Mail domain is active
09:49:06.72: User status = active
09:49:06.72: User is active
09:49:06.72: Mail user status = active
09:49:06.72: User is active
09:49:06.72: User UID user found.
09:49:06.73: Delivery option: mailbox
09:49:06.73: Delivery options value: 1
09:49:06.73: Processing mailhost attribute
09:49:06.73: Mailhost not set for user
09:49:06.73: Adding result to cache.
09:49:06.73: Status for this address = -10
09:49:06.73: LDAP URL template identified
09:49:06.73: URL determined to be: ldap:///o%3Ddomain.com?*?sub?([email protected])
09:49:06.73: URL context #1 will be used
09:49:06.73: Performing URL search on: ldap:///o%3Ddomain.com?objectclass,inetuserstatus,mailuserstatus,inetMailGroupStatus,uid,preferredLanguage,mailRoutingAddress,mailMsgMaxBlocks,mail,mailAlternateAddress,mailEquivalentAddress,mailDeliveryOption,vacationStartDate,vacationEndDate,mailConversionTag,mailhost,mailQuota,mailMsgQuota,mailProgramDeliveryInfo,mailDeliveryFileURL,mailDeliveryFile,mailAutoReplyMode,mailAutoReplySubject,mailAutoReplyText,mailAutoReplyTextInternal,mailAutoReplyTimeOut,mailSieveRuleSource,mailForwardingAddress,mailDeferProcessing,mgrpMsgRejectAction,mgrpRejectText,mgrpMsgRejectText,mgrpBroadcasterPolicy,mgrpDisallowedBroadcaster,mgrpAllowedBroadcaster,mgrpDisallowedDomain,mgrpAllowedDomain,mgrpMsgMaxSize,mgrpAuthPassword,mgrpModerator,mgrpDeliverTo,memberURL,UniqueMember,mgrpRFC822MailMember,rfc822MailMember,mgrpErrorsTo,mgrpAddHeader,mgrpRemoveHeader,mgrpMsgPrefixText,mgrpMsgSuffixText,mgmanMemberVisibility,expandable?sub?([email protected])
09:49:06.75: Search succeeded but 0 entries returned
09:49:06.75: No matching entries were found that were valid
09:49:06.75: Status for this address = 0
0 expansion total.
*** Debug output from submitting an envelope address:
09:49:06.75: mmc_wadr(0x08103050,'[email protected]','[email protected]') called.
09:49:06.75: Copy estimate before address addition is 1
09:49:06.75: Parsing address [email protected]
09:49:06.75: Rewriting: Mbox = "user", host = "domain.com", domain = "$*", literal = "", tag = ""
09:49:06.75: Rewrite: "$*", position 0, hash table -
09:49:06.75: Found: "$A$E$F$U%[email protected]"
09:49:06.75: Match, pattern = "domain.com", current = "(*domaincheck*)"
09:49:06.75: old state = not checked.
09:49:06.75: Using result 1 from domain match cache.
09:49:06.75: new state = succeeded.
09:49:06.75: New mailbox: "user".
09:49:06.75: New host: "domain.com".
09:49:06.75: New route: "mta1.domain.com".
09:49:06.75: New channel system: "mta1.domain.com".
09:49:06.75: Looking up host "mta1.domain.com".
09:49:06.75: - found on channel l
09:49:06.75: Routelocal flag set; scanning for % and !
09:49:06.75: Address [email protected] requires local processing.
09:49:06.75: Variant #1 = [email protected]
09:49:06.75: Variant #2 = *@domain.com
09:49:06.75: Alias magic value 8764
09:49:06.75: Checking for [email protected] in the system alias file
09:49:06.75: - not found
09:49:06.75: Checking for *@domain.com in the system alias file
09:49:06.75: - not found
09:49:06.75: Checking [email protected] with URL template ldap:///$V?*?sub?$R
09:49:06.75: LDAP URL template identified
09:49:06.75: URL determined to be: ldap:///o%3Ddomain.com?*?sub?(|([email protected])([email protected])([email protected]))
09:49:06.75: URL context #1 will be used
09:49:06.75: Using cached LDAP result for URL info: ldap:///$V?*?sub?$R|[email protected]|[email protected]
09:49:06.75: Scanning LDAP result.
09:49:06.75: Attribute: objectclass
09:49:06.75: Attribute index: 0
09:49:06.75: Attribute: inetuserstatus
09:49:06.75: Attribute index: 1
09:49:06.75: Attribute: mailuserstatus
09:49:06.75: Attribute index: 2
09:49:06.75: Attribute: uid
09:49:06.75: Attribute index: 5
09:49:06.75: Attribute: preferredLanguage
09:49:06.75: Attribute index: 19
09:49:06.75: Attribute: mail
09:49:06.75: Attribute index: 31
09:49:06.75: Attribute: mailAlternateAddress
09:49:06.75: Attribute index: 32
09:49:06.75: Attribute: mailDeliveryOption
09:49:06.75: Attribute index: 34
09:49:06.75: Attribute: mailQuota
09:49:06.75: Attribute index: 51
09:49:06.75: Attribute: mailAutoReplyMode
09:49:06.75: Attribute index: 55
09:49:06.75: Attribute: mailForwardingAddress
09:49:06.75: Attribute index: 64
09:49:06.75: Attribute: mailDeferProcessing
09:49:06.75: Attribute index: 65
09:49:06.75: Scanning complete, begin actions
09:49:06.75: Possible user object classes: inetLocalMailRecipient+inetmailuser
09:49:06.75: Possible group object classes: inetLocalMailRecipient+inetmailgroup
09:49:06.75: Object class: top
09:49:06.75: Object class didn't match
09:49:06.75: Object class: person
09:49:06.75: Object class didn't match
09:49:06.75: Object class: inetuser
09:49:06.75: Object class didn't match
09:49:06.75: Object class: organizationalperson
09:49:06.75: Object class didn't match
09:49:06.75: Object class: inetorgperson
09:49:06.75: Object class didn't match
09:49:06.75: Object class: ipuser
09:49:06.75: Object class didn't match
09:49:06.75: Object class: inetmailuser
09:49:06.75: Object class match, reference value 1
09:49:06.75: Object class: inetlocalmailrecipient
09:49:06.75: Object class match, reference value 18
09:49:06.75: Object class: userpresenceprofile
09:49:06.75: Object class didn't match
09:49:06.75: Object class: inetsubscriber
09:49:06.75: Object class didn't match
09:49:06.75: Object class: icscalendaruser
09:49:06.75: Object class didn't match
09:49:06.75: Object class: iplanet-am-managed-person
09:49:06.75: Object class didn't match
09:49:06.75: Object class: iplanet-am-user-service
09:49:06.75: Object class didn't match
09:49:06.75: Object class: iplanetpreferences
09:49:06.75: Object class didn't match
09:49:06.75: Object class: inetadmin
09:49:06.75: Object class didn't match
09:49:06.75: Object class: sunamauthaccountlockout
09:49:06.75: Object class didn't match
09:49:06.75: Object class: sunUCPreferences
09:49:06.75: Object class didn't match
09:49:06.75: Object class: mailDomain
09:49:06.75: Object class didn't match
09:49:06.75: User/group index = 1
09:49:06.75: Domain is active
09:49:06.75: Mail domain is active
09:49:06.75: User status = active
09:49:06.75: User is active
09:49:06.75: Mail user status = active
09:49:06.75: User is active
09:49:06.75: User UID user found.
09:49:06.75: Delivery option: mailbox
09:49:06.75: Delivery options value: 1
09:49:06.75: Processing mailhost attribute
09:49:06.75: Mailhost not set for user
09:49:06.75: Status for this address = -10
09:49:06.75: Temporary alias URL failure; reprocess later
09:49:06.75: - adding address [email protected] to channel reprocess
09:49:06.75: Good address count 1 defer count 1
09:49:06.75: All addresses deferred - treat as general temporary error
09:49:06.75: Copy estimate after address addition is 2
09:49:06.75: mmc_waend(0x08103050) called.
09:49:06.75: Copy estimate is 2
09:49:06.75: Queue area size 145940970, temp area size 21837154
09:49:06.75: 36485242 blocks of effective free queue space available; setting disk limit accordingly.
09:49:06.75: 10918577 blocks of free temporary space available; setting disk limit accordingly.
Submitted address list:
Address list error -- 4.0.0 temporary error returned by alias expansion: [email protected]
Submitted notifications list: -
How to Use 'uid' for AD Users Without Domain Name For User Log in OAM
How to Use 'uid' for synchronized Active Directory (AD) Users into Oracle Internet Directory (OID) Without Domain Name For User Logins in OIDDAS and OAM
We successfully integrated OAM 11g with EBS R12.1.3 Now all the AD user id's stored in fnd_users table as [email protected]
How can we remove @abc.com
We are using OID 11g and OAM 11g
Found the similar note for OID 10G: How to Use 'uid' for AD Users Without Domain Name For User Logins in OIDDAS and SSO [ID 580480.1]
We are in OID 11g.
Any help on this greatly appreciated.I couldn't find any reference that could be helpful -- Please log a SR and see if this is supported and if the steps are available.
Thanks,
Hussein -
I have a requirement to restrict the access of "InPlaceRecordsListSettings.aspx" and "InPlaceRecordsSettings.aspx" pages for some of the users and allow the access for some of the users.
I have applied the below code on the web.config file but this modification impacting only on the web application level not on the site collection and sub site level.
<location path="_layouts/15/InPlaceRecordsSettings.aspx">
<system.web>
<authorization>
<deny users="*" />
</authorization>
</system.web>
</location>
<location path="_layouts/15/InPlaceRecordsListSettings.aspx">
<system.web>
<authorization>
<deny users="*" />
</authorization>
</system.web>
</location>
When I tried the access on
:<portno>/sites/<scname>/_layouts/15/InPlaceRecordsSettings.aspx">http://<servername>:<portno>/sites/<scname>/_layouts/15/InPlaceRecordsSettings.aspx page allowed the access for all users.
Please suggest the possible solution to restrict the access of "InPlaceRecordsListSettings.aspx" and "InPlaceRecordsSettings.aspx" pages on SharePoint2013.
Thanks
RamasubbuYou can't do it from OOTB.
_layout folder is accessible to the users if they have read access in any of the site even subsite.
You can modify *.aspx file, add your custom control which will check user.
[custom.development] -
HELP needed on Remote Management set to allow access for all users
my mac mini snow leopard server runs in a data center and i use screen sharing to interact with it. i played with the sharing settings remotely yesterday and changed "allow access for" to all users. i was disconnected immediately and i couldn't logon again. i have no luck changing to other users. i don't want to make a special trip to the center to change it back to whatever it used to be. i can still use afp to connect but the screen sharing option is no longer available. what does "allow access for all users" mean anyway?
thanks!As its name implies, allow access for all should allow any valid user account to access the server. I'm not sure why it's no longer working. It almost sounds like the ARDAgent crashed.
Either way there's a command-line interface to the ARD preferences:
/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Resources/ki ckstart
man kickstart discusses the options, including examples of how to enable access for specific users. -
After installing Mountain Lion, why is there Yahoo access for one user but not another?--both are administrators.
We've had several instances where we have had to run chkdsk on arrays with over 1m files. Average completion time is approximately 72 hours. The maximum downtime window they have available is the 64 hour weekend window. File sizes and number of files were
much smaller then than they are now.
The idea, in theory, was to use VHDs to compartmentalize the data into smaller volumes which could be more easily managed. It would also improve performance when transferring these compartments of data as they would use sequential read/write rather than
fragmented/random. This idea was never fleshed out in entirety, they don't split data up into little containers, but simply into big ones per project. Hence the 11m files in one container that I am currently trying to diagnose.
Some other important facts: The VHD in question is mounted in B:/project/ as this server also allows remote workers to log in, but they are restricted to see only data in E:. Disks A-D are hidden via group policy.
Update: icacls is failing on a large number of files within this dataset. I counted the path characters to ensure it wasn't the 255 character limit I was encountering and verified that the paths being blocked are only about 150 characters long. Once it finishes,
I'll have to try taking ownership and then re-running it. At this point I still have no idea how long to expect. I'm running out of time as the environment will be in use again at 9AM tomorrow morning. -
Default cost center not appearing for certain users
Hi Gurus,
We are on SRM 4.0 classic scenario.
For certain users when they create SC in SRM the default cost center is not automatically taken into account even if they change it to it. The default cost center was changed for these users and some of them still refer to the old cost center no. which was maintained for them.
The users are not defective and the except the cost center all other attributes work fine. I have tested by deleting & recreating new BP no. for the users but it still doesnt help. Please advise.
BR,
Sambithi
check if the users are correctly mapped into org structure (ppoma_bbp)
than check if theri Position are correctly mapped with the default cost center (ppoma_bbp; tab attributes; cost center
regards
andrea -
Giving Access for an User On One Schema.
Hi all,
I want to give read,write and execute access for an user in one schema and only read access to another two users.
How can I give..Please suggest.Hi,
Well in that case you may have to give the select privilege to a particular user for all tables.
Or
You may like to create two roles, and give select privilege to a particular role for all tables. And give write i.e. insert/update privilege to the other role. Then assign this role to the user whom you like to give the access.
Regards
Anurag Tibrewal.
Maybe you are looking for
-
Hi, Can any one please help on identifying the table used for retrieving Open sales order data for a particular period, My requirement is to take the Volume of open sales order for Data migration volume assessment Please help on this Thanks Raje
-
If I were to buy the new Airport Extreme would I be able to connect my backup HDD to it via USB and have Time Machine backup to that HDD? I have been hearing mixed reports on this. Can anyone confirm for me if it works or not?
-
Update statement using function
Environment: Win7 and SQL server 2008 R2 Tools: SQL management tool 2008 R2 Problem: I have been trying to update id numbers in the staging table. T-SQL statement updates all id number in the staging table, but what if the we have multiple records fo
-
Sending messages in facebook app
Does anyone have a problem with the facebook app when trying to send a message? I have no problem if I'm replying to someone but creating a new message and selecting the recipient and then sending always results in an error.
-
Logon.jsp changes not reflecting
i am changing logon.jsp and redeploying infoview but changes are not reflecting..Any help... waht is the process to redeply after changing in logon.jsp