Segurity users with accounts UCM  (a strange case )

Similar Messages

• Time Capsule - File sharing with accounts

  I recently got a brand new Time Capsule 1 TB. I have not copied any data to the internal (Airport) disk drive yet since I have been previously using a separate USB disk drive for Time machine backups and for storing other data. When I will have time I will just copy the data from the external USB drive to the Time capsule and use the Time capsule disk also for Time machine backups (I will delete the previous Time machine backups from the USB drive), while the USB drive will remain connected to the Time capsule for extended storage.
  I would like to secure my shared disk with accounts (Airport Utility ->Disks -> File Sharing -> Secure Shared Disks -> With Accounts); currently I have "With a disk password" option selected. Somewhere on the internet I've read that when I enable this feature a new directory is created for each of the user account added to the Time capsule for disk access and that the existing data is removed from the Time capsule. Also, a new folder is created in Time capsule with a name of the disk which can be used as a shared folder for all users with accounts on Time capsule.
  The questions I have are:
  1. What happens to the other external USB drive connected to Time machine when I enable the user account secutiry feature? Is the data deleted? Are user account also set for this drive?
  2. How to delete one user's data from the Time capsule after enabling user accounts access? If I delete his/her account on Time capsule, is his/her data also deleted from disk or just stays there?

  mikkec wrote:
  I recently got a brand new Time Capsule 1 TB. I have not copied any data to the internal (Airport) disk drive yet since I have been previously using a separate USB disk drive for Time machine backups and for storing other data. When I will have time I will just copy the data from the external USB drive to the Time capsule and use the Time capsule disk also for Time machine backups
  this will not work. TM treats backups to locally attached drives differently to those made to networked drives. click here for information.
  (I will delete the previous Time machine backups from the USB drive), while the USB drive will remain connected to the Time capsule for extended storage.
  I would like to secure my shared disk with accounts (Airport Utility ->Disks -> File Sharing -> Secure Shared Disks -> With Accounts); currently I have "With a disk password" option selected. Somewhere on the internet I've read that when I enable this feature a new directory is created for each of the user account added to the Time capsule for disk access and that the existing data is removed from the Time capsule. Also, a new folder is created in Time capsule with a name of the disk which can be used as a shared folder for all users with accounts on Time capsule.
  The questions I have are:
  1. What happens to the other external USB drive connected to Time machine when I enable the user account secutiry feature? Is the data deleted? Are user account also set for this drive?
  2. How to delete one user's data from the Time capsule after enabling user accounts access? If I delete his/her account on Time capsule, is his/her data also deleted from disk or just stays there?
  somebody else will need to address these questions.

• How to authenticate LDAP with account name?

  Hi,
  In my ADS server for all the users common name and account name are differently assigned , In LADP application which is developed using JNDI APIs it is able to authenticate the users with display name/ CN value(common Name ) only, but I need to authenticate users with account name.
  Please give the solution for this.
  Thanks
  Raghava

  If you search through posts in this forum, you will find out what credential formats can be used to authenticate a user.
  Just to make it easy for you, here is a search string.
  http://www.google.com/search?hl=en&q=active+directory+jndi+account+name+site%3Aforums.sun.com&meta=

• How to find login user with the largest account

  Hello. I'm looking to put together a bash script that can do two things: (1) determine the shortname of the user with the largest account in /Users and (2) look up their full/long name. I'm going to use this script to help identify who the user on a computer and while I know that's possible that a sometime-user may have a larger account than the normal-user on any given computer, the results of a script should be sufficient in most cases for my needs.
  I'm not sure the best way to around this. I know that I can use "du -m -d1 /Users" as root:
  root on torchwood
  [ ~ ]$ du -m -d1 /Users
  157 /Users/admin
  128 /Users/johndoe
  70890 /Users/dancollins
  21746 /Users/Shared
  92920 /Users
  I know that I can also use "dscacheutil -q user" to get a full list of all users on a system.
  How can I get both the short and long name of the user with the largest account in the /Users folder?

  We're running JAMF Recon for inventory and my supervisor wants to create a report that lists the primary user of the Mac... assuming that the largest user account may be the primary user. In this case, disk space is not the issue, the top admins simply would like to be able to associate names with individual machines. This isn't the most elegant way to do it and it's not fool-proof, but it'll be correct more often than not, which they're satisfied with.
  Can I ask one more question? Using your script, I've started testing with one building and on a number of Mac, the "admin" (shortname) account is turning out to be the largest account. Is there a way to exclude the admin account from consideration?
  Thanks...

• How do you change an used ipad to a new user with a new itunes account?

  How do you cange a used ipad to a new user with a new itunes account?

  plug your ipad to your computer, open your itunes, click on the ipad icon, at the first page there is an option to "restore" ipad to its factory settings, click it. Don't remove USB connection, wait until it finishes wiping the data and it should place a new window that asks you to register the ipad.
  There you go, your iPad is sync with your itunes account under your name, its best to also use "Find my iPad" just in case it gets lost, you can track it from your computer. Very handy tool and its free!
  But if you want the data that is in the iPad, back up it first and sync the content to your library before restoring it to its factory settings
  Have a great day and enjoy your iPad

• TS1368 I'm a PC user with an itunes account for several years. I updated my itunes and now it wont open and shows me 'missing file MSVCR80.dll,and error 7(Window error 126)' keep coming up even after re-installing itunes . What should i do?

  I'm a PC user with an itunes account for several years. I updated my itunes and now it wont open and shows me 'missing file MSVCR80.dll,and error 7(Window error 126)' keep coming up even after re-installing itunes . What should i do?

  Click here and follow the instructions.
  (98897)

• How many different iPods can I sync with my single iMac user/iTunes account?

  Good Day to All,
  Can anyone tell me how many different iPods & iPhones can I successfully consistently sync/integrate using my one "user account" in iTunes on my iMac? This ist situation:
  I have always (and only) synced etc. my iPhone with my one iTunes UID which is under my ONE "User Account" on my  iMac. Recently, my elderly folks gave me 2 iPods they have never used. One is a little silver 4GB shuffle (the little guy with a built on "belt clip" & it verbally tells you what song and artist is playing. The other is also an iPod shuffle ( only 1GB), also has the metal "pinch to open; belt clip"; also no display, however it came with a little USB Dock and THIS ONE has all of the user controls on the face of it in a circular patter of course..
  To have COMPLETE successful "interaction/integration/syncing" etc (with no issues/complications etc) with my iTunes currently and previously only used with my iPhone, do I have to create two new additional "User Login/accounts" on my iMac (one for each iPod) to have all three if my devices work perfectly fine, or can I just use my same iMac login (UID) & iTunes that I use with my iPhone and have no worries?
  (ie: I created my girlfriend her own iMac login UID which she has always used for backing up/syncing etc her iPhone with HER iTunes library etc)
  In short, does iTunes have the ability to have multiple iPods & my iPhone under my one existing iTunes account AND using the same single iMac login/UID I've always used with my iPhone?
  Obviously, I know I could create an iMac login for my mom's, another for my dad's & create them both their individual iTunes accounts, but they really don't want to have to worry about dealing with all that. I'm teetering between just treating them as my iPods and mixing/adding their limited CD's into my library (again, if iTunes allows multiple iPods etc as explained above..
  OR; my other thought would be (again, if one iTunes account can integrate the two iPods as seperate devices and to just create ONE iMac UID login and ONE iTunes account under my dad's name, and use that one account for both of their music, both of their iPods, importing their CD's into the same iTunes library, then when syncing etc. just doing selective transfers/sync's of the specific music for each iPod... Even then, will iTunes be able to differentiate the two as far as backups/restored etc? I think  answering my own question as I type due to the cloud... For completely individual cloud interaction/integration, I would def need to create each of them their own iTunes accounts, otherwise they will have all of each other's songs on their devices.. (ie: And my dad def doesn't want to worry about skipping over my mom's Journey or Aerosmith tunes to get to his Willie Nelson and vice versa for example.
  (Sorry sooooo drawn out; thinking outloud) I guess it seems obvious that since all their digital music has to be on my iMac, I really should create them each their own iMac UID login as well as their own individual iTunes Acounts to insure cloud services work easily for restores/backups etc...
  Thanks for stumbling thru my thought processes here (if I didn't lose ya long ago); I'm exhausted and throwing thoughts at the classroom board to see what sticks.... The best easiest way that is.. (The two aren't always the same obviously!)
  Thank you all for your precious time and consideration and most if all; YOUR PATIENCE!! Any confirmation if the options and suggestions are greatly appreciated. You know, gotta take care of the folks & what is the simplest for them as just end users is the most important or they'll NEVER bother with them in the end...
  Respectfully appreciative,
  DB

  You can use as many iPods with one iTunes library as you want.
  (108420)

• Can you have two different users with itune accounts on the same computer?

  Can you have two different users with separate itune accounts on the same Ipad?

  Yes, create another user profile on the computer and each user can log into their own profile that way.

• HT1206 Lots of info about one user using multiple computers. What about multiple users with separate Apple IDs using same computer? Having problems getting my wifes new iPhone talking to her apple account on the computer we share (2 users)

  Lots of info about one user using multiple computers. What about multiple users with separate Apple IDs using same computer? Having problems getting my wifes new iPhone talking to her apple account on the computer we share (2 users)

  You need to create a user account for your wife (or yourself depending on who has the current user account). When syncing, each of you should sign in as a separate user, login to iTunes and then sync. I had this problem when my sister got an iPhone. When we did her initial sync, everything on my iPhone showed up on hers. Apple gave me this solution.

• I bought a new iphone and as i was setting my apple ID account and i signed in to my account and confirmed two useres with diffrent numbers that were signed to the same apple ID and it messed up my i messege and face time. how do i fix that ?

  i bought a new iphone and as i was setting my apple ID account and i signed in to my account and confirmed two useres with diffrent numbers that were signed to the same apple ID and it messed up my i messege and face time. how do i fix that or delete one user ?

  Hello sapiii96,
  Thanks for using Apple Support Communities.
  For more information on this, take a look at:
  iOS: Troubleshooting FaceTime and iMessage activation
  http://support.apple.com/kb/ts4268
  To sign out of your Apple ID
  Go to Settings > FaceTime, tap your Apple ID, and select Sign Out.
  Go to Settings > Messages > Send & Receive, tap your Apple ID, and select Sign Out.
  Best of luck,
  Mario

• Help with user.update.accounts[Lighthouse].changes[roleInfos].new

  When I access user.update.accounts[Lighthouse].changes[roleInfos].new it returns a list of XMLObjects, which are the new list of roles to be provisioned in IDM. The following is an example:
  <GenericAttribute>
    <Object>
      <Attribute name='attribute'>
        <Object name='Production Server'>
          <Attribute name='directlyAssigned'>
            <Boolean>true</Boolean>
          </Attribute>
          <Attribute name='state' value='assigned'/>
          <Attribute name='type' value='BusinessRole'/>
        </Object>
      </Attribute>
    </Object>
  </GenericAttribute>I would like to execute a specific transition when a specific role is identified within work flow transition from this list. So I thought I could try the following:
  <contains>
    <ref>user.update.accounts[Lighthouse].changes[roleInfos].new</ref>
    <s>Production Server</s>
  </contains>This does not work, but in my workflow debug I see the following:
    Resolved reference user.update.accounts[Lighthouse].changes[roleInfos].new = [Corporate Domain Administrator
    assignedBy = [Information Security Specialist]
    assignmentType = conditional
    state = assigned
    type = ITRole
  , Employee Production
    assignedBy = [Information Security Specialist]
    assignmentType = required
    state = assigned
    type = ITRole
  , IT Organization
    assignedBy = [Information Security Specialist]
    assignmentType = required
    state = assigned
    type = ITRole
  , Information Security
    assignedBy = [Information Security Specialist]
    assignmentType = required
    state = assigned
    type = ITRole
  , Information Security Specialist
    directlyAssigned = true
    state = assigned
    type = BusinessRole
  , MachineEX bzncvs02ex
    assignedBy = [Information Security Specialist]
    assignmentType = conditional
    state = assigned
    type = ApplicationRole
  , MachineEx bznsa02ex
    assignedBy = [Information Security Specialist]
    assignmentType = conditional
    state = assigned
    type = ApplicationRole
  , MachineEx bznwsint01
    assignedBy = [Information Security Specialist]
    assignmentType = conditional
    state = assigned
    type = ApplicationRole
  , Technology Organization
    assignedBy = [Information Security Specialist]
    assignmentType = required
    state = assigned
    type = ITRole
  ]My question is how can I check for something specific in XMLobject list similar to the following or Java code?
  <contains>
    <ref>user.update.accounts[Lighthouse].changes[roleInfos].new</ref>
    <s>Production Server</s>
  </contains>

  I solved my problem and wanted to share the solution with yall
  1. First off the modifications are stored in a task instance, which is passed to the workflow engine
  variables.user.update.accounts[Lighthouse].changes[roleInfos].new2. I created a class to parse the list of changes which are stored as XMLobject in a task definition
  public Boolean roleChangeValidation(List<GenericAttribute> changes, String roleid)
            String type = "MANUAL";
            Boolean returncode = false;
            if (changes != null) {
                 Iterator<GenericAttribute> it = changes.iterator();
                 do {
                      if (!it.hasNext())
                           break;
                      GenericAttribute change = it.next();
                      GenericObject value = change.get();          
                      String name = value.getName();
                      if(this.Debug)
                           System.out.println(type + ":" + name);
                      if(value.containsValue(roleid))
                           if(this.Debug)
                                System.out.println(name);
                           returncode = true;
                 } while (true);
            return returncode;
       }3. I added the following actions to the update workflow, which passes the Roleid I am looking for and returns true if found.
  <Action id='1' name='Validate Privileged Role'>
    <expression>
      <block>
        <defvar name='zRoleChange'>
          <new class='com.generic.util.zRoleChange'>
            <Boolean>true</Boolean>
          </new>
        </defvar>
        <set name='_tokencheck_'>
          <invoke name='roleChangeValidation'>
            <ref>zRoleChange</ref>
            <ref>user.update.accounts[Lighthouse].changes[roleInfos].new</ref>
            <s>Production Server</s>
          </invoke>
        </set>
      </block>
    </expression>
  </Action>Edited by: OlympicAdmin on Feb 24, 2010 12:39 PM

• How to report with different time zone dynamically based on user's account?

  Hello
  I am wondering is there a way to change the report's date & time data based on user's locale setting in OBIEE?
  Let's say the user log in to OBIEE with eastern time zone setting. The data that's in the database is storing a transaction of $400 at 1am Pacific time.
  So when this user run a query which does something like 'select date, transaction, amount from date, transaction, sales where this = that', it should display the $400 amount done at 4am eastern time instead of 1am pst.
  What I have done is to have data stores in date dimension to be UTC time, and I have also changed the data type of the date column to be 'local time zone'. DB is Oracle DB 11G now.
  Now this query works perfectly well in the DB as long as I run the following commend first:
  Alter session set time zone = 'whatever my time zone'
  and then
  Select date, transaction from tables..
  The date displayed will automatically be converted into different time zone..
  Since everything is working nicely from Oracle DB level, I need to know how to make it work when OBIEE sends the same query down to the DB..
  I know that, probably I will have to enter the above alter session commend in the connection pool, however, I can't hardcode the time zone value.
  I also don't want to store user's time zone in the user table because these users travels a lot. So even if his table setting is EST, but at a given day he can be traveling to pst time zone and view reports.
  Is there a way to dynamically set the time zone based on user's account locale setting?
  Let me know if you guys have implemented something similar or not
  Thanks

  garuda wrote:
  Hello Sarvan
  I have already done that part at the DB level and it is working perfectly with alter session commend before the query.
  My question is, how do I configure OBIEE so that before each user runs a report from BI, the alter session commend will be fired with each user's personal locale time zone setting passed through so that each user will be able to view data according to their different time zone?did you tried with Connection scripts(Execute On connect) in Connection pool.write ur Alter commend to Change Time Zone in this script box.

• 3 users with 3 accounts on 1 MacBook--

  Hi,
  We're a family of 3 users with our own Apple accounts. We all use one MacBook Pro. Can we share videos & music that one of us might have purchased from the iTunes store so that we don't have to use one anothers's accounts?
  Thanks!

  iTunes: How to share music between different accounts on a single computer

• Macbook crash when trying to autorize user with system admin account  in maverick

  macbook crash when trying to autorize user with system admin account  in maverick,
  Please help

  Hi Frank,
  Please refer to following operations and check if can help you.
  1.
  wmic /node:"HOSTNAME" /user:"ADMIN_USER" /password:"PASSWORD" logicaldisk
  Please replace HOSTNAME with IP address, then monitor the result.
  2. Please open Control Panel, select User Accounts and click Manage another account. Then select the user account which you will use in WMIC command. Then please select Change
  the account type and check if you have set it as Administrator. If no, please set it as Administrator and check if this issue still persists.
  3. Please refer to the following thread and check if can help you.
  WMI
  Remote "Access Denied"
  If this issue still persists, please let me know the edition information of Windows OS that this issue occurred
  in. Meanwhile, you described “The user account is a member of Administrators.” Would you please let me summarily know how operate?
  Hope this helps.
  Best regards,
  Justin Gu

• Migrating users - with a twist (change AD accounts to local)

  This scenario occurs on 5 Mac Pros currently running 10.5 and that have a bunch of software already installed, which I am trying to avoid redoing (obnoxious email settings, etc).
  These machines currently authenticate against Active Directory directly, but only one person logs on per machine. So basically the users on the machine are local admin and AD authenticated user with all files stored locally. The AD thing is starting to break down left and right and I'm proposing it's time for it to go. So I would like to convert the AD authenticated user's files and account over to a locally authenticated account. If it's useful I'm gonna upgrade these machines to 10.6 (preferably in place upgrade due to all of the preconfigured apps) either during this process or more likely after.
  Thanks!!!

  Hi,
  According to the description, I know that users cannot see free/busy information via Outlook 2010 which user account and mailbox in separate domain.
  How about OWA? If users can see free/busy information in OWA, it seems an issue on the Outlook client or Autodiscover side.
  Please try to run Outlook under safe mode or re-create profile for testing.
  Also make sure the user has reviewer permission.
  If the 2 domains are located on multiple-forest, please export SCP from resource forest and import into user account forest. Command as below:
  Export-AutoDiscoverConfig -DomainController DomainControllerName -TargetForestDomainController TargetForestDomainControllerName -MultipleExchangeDeployments $true
  More details to see:
  http://johanveldhuis.nl/en/tutorials/exchange/autodiscover-in-een-multiforest-omgeving/
  Disclaimer:
  Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure
  that you completely understand the risk before retrieving any suggestions from the above link.
  Thanks
  Mavis Huang
  TechNet Community Support