[SOLVED] Access denied by Application security check (3.0.1 on Oracle XE)

Similar Messages

• Access denied by Application security check (4.0.2)

  Does any body know how to solve that problem: [SOLVED] Access denied by Application security check (3.0.1 on Oracle XE) on 4.0.2.
  Solution: Logged on to INTERNAL workspace with admin username.
  Is not working anymore, it doesn't take the user name. Error msg:
  "2 errors have occurred
  * Your Username is not available. Please close your browser completely. After restarting your browser, your Username should be displayed correctly.
  * Invalid Password"
  Edited by: its_working on Jun 3, 2011 3:57 PM

  Hello Spadafore,
  Thank you, for your quick answer. I found another way, and it is solved.
  =========
  SOLUTION:
  =========
  Login as sys with sqlpus (sqlplus sys as sysdba )on the database and run this script:
  update flows_030000.wwv_flow_fnd_user
  set change_password_on_first_use ='N'
  where lower(user_name) = 'admin'
  commit
  However it's worked, but the whole story strange a little bit...
  I tried to logon (internal, admin, xxx), then I got this: Access denied by Application security check
  When I tried logon with wrong password I got this: Invalid Login Credentials
  Afterwards I run the script above, and try relogon, I got the password change page, but at this time it worked, and it is working now....
  Tiboir

• Access denied by Application security check

  I see that others have gotten this error when logging in but I'm getting this during an application install.
  I have an application in workspace A that I exported. I created workspace B, using the same parsing schema and the same workspace the schema assignments. In workspace A, I exported as user ADMIN who has Administrator and Developer rights. The same user with the same rights was used to import and install the application into workspace B. The import into workspace B is successful. For the import, I use the same parsing schema assignment and I let the install utility assign a new application ID. It apparently chose app ID 115 because after a few minutes into the install I get the "Access denied by Application security check" and at the top of the page it says "Application 115 installed".
  To make matters worse, when I log back into workspace A, I see that application 115 has just been installed into THAT workspace.

  Lloyd,
  That's weird. What version of Application Express? I would suggest using a different user (not ADMIN) for export and import, as I'm sure what you experienced is due to a bug related to the privileges of the ADMIN user.
  Scott

• Help please: "Access denied by Application security check"

  I am very new for using Application express 2.2.
  I create a demon application, and want to creat a end user right now.
  The end user has no-dev and no-admin privileges. However when I tried to logon I got error message "Access denied by Application security check", and only option is to log-out.
  What I have done wrong?
  Thanks,

  See http://download-east.oracle.com/docs/cd/B31036_01/doc/appdev.22/b28550/sec.htm#BABBCIEE
  When you create users in the Apex repository (using an Admin account in the workspace), and give them neither Dev nor Admin privilege, they are not meant to login to the Application Builder. You would use the link above to create an authentication scheme in applications you develop.
  [Read that Chapter 11 Managing Application Security from start to finish]

• Access denied by Application security check on application import

  I am attempting to copy an application from one workspace to another.
  Action performed:
  1) From original workspace, export application exporting to file.
  2) Create new workspace.
  3) Log in to new workspace.
  4) Import the application.
  When I import the export file I get the error 'Access denied by Application security check'.
  The application gets installed to the original workspace.
  I am using APEX version 4.01.00.03

  Hi,
  I have the same problem with apex 3.2.1.00.12. I checked everything what was proposed as solution in this thread. I'm even able to create a new application in the target environment. Suggestions are wellcome!!!
  The problem is probably in the workspace from which export starts:
  -I created a new application with only one blanco page no authentication in originating workspace.
  -Did export from that to file
  -Did import in target workspace. I received the error and application was created in originating workspace...
  -I created a new application with only one blanco page in a newly created workspace without authentication.
  -Did export from that to file
  -Did import in target workspace. I received no error.
  Kind
  Regards
  Edited by: Conrad on 18-Feb-2011 06:51

• Change message "Access denied by Application security check "

  Helo,
  I want change the page or the message that appear when you don't have authorization.
  I prefer change page because I want to appear the header.
  thank you. Sincerely,
  Amparo

  Hi Arie,
  Could it be possible that is had nothing to do with remote/local browser but could it be that your remote browser was firefox and the local browser was IE since your running 2003?
  Then it would be consistent with Rene's explanation and my expericence:
  - when using the apex_admin login you get acces denied by Application Security Check
  - when using the workspace login your unable to change password: notice somehow apex 'looses' the user it's changing the password for. It should show ADMIN and it is showing null. That probably why you get the incorrect current password message as it validates agianst user null.
  I'm having this same problem and the only thing that solves it is just using IE instead of firefox. FF3.0.1 is giving the same error you describe locally as well as remote? After I have changed the password I can simply go back and use FF3.0.1 again
  @Scott: could this be a incompatibility issue with firefox?
  Geert

• End user - Access denied by application security check

  Hello all,
  Being a new Apex developer, I'm really hoping someone can point out the magic solution to this problem. I have just created my first Apex application and have only 3 end users who will be using it. I create their username and passwords as the admin and everything is fine, until they try to log on. That's when I get the Access denied... error. However, if I switch them from an end user to a developer, they are magically able to log in and access the application (as a developer obviously). I should mention they are internal users and have internal account credentials, so it shouldn't be this difficult.
  This is particularly maddening because I have tried every combination of authorization and authentication I can think of. I am at the point where there is no authorization scheme and it still won't let them in.
  Searching through the forums, I've come across threads that mention this error when an Admin tries to log on, but not an end user.
  If anyone has ANY ideas, it would be most appreciated.
  Thanks,
  Ben

  Hi,
  What URL have you given to the users to gain access to the application. Are they trying to access it via the developer login?
  What version of APEX/oracle are you using.
  APEX using embedded PL/SQL gateway should look something like this
  http://hostname:port/apex/f?p=101 where 101 is the application id
  APEX using Apache
  The URL should look something like this
  http://hostname:port/pls/apex/f?p=101 where 101 is the application id
  Regards
  Paul

• Access denied by Page security check

  Hi,
  I would like to allow access to page 1 only to users in the group 'CPY'
  i do un authorizzation scheme 'CPY_GROUP' (exists sql query type)
  SELECT '1'
  FROM GRP gr, USG ug, USR us
  WHERE gr.GRP_APP_ID='CRM'
  AND gr.GRP_ID = 'CPY'
  AND us.USR_ID = UPPER(:P101_USERNAME)
  AND us.USR_ID=ug.USG_USR_ID
  AND gr.GRP_ID=ug.USG_GRP_ID;
  on the page 1, on the security session, i pick 'CPY_GROUP' from select list
  when run my application with a user of 'CPY_GROUP' i have the error
  Access denied by Page security check
  Error      You are not authorized to access this function. (my Identify error message displayed when scheme violated)
  Any help?
  Thanks in advance
  km

  Hi Scott,
  I am facing a similar kind of problem. I am using :P101_USERNAME only in login page to check for user name and password. I have not used it in any of the further pages.
  But i am still getting the error "Access denied by Page security check". Please suggest me some solution.
  Thanks in advance,
  Anjali

• Access denied by Page security check to a different page?

  Hi, all,
  I have an authorization scheme that I'm using, and I'd like for it to redirect to the login page when authorization fails instead of displaying the standard error screen. How can I do that?
  Also, is it possible to have page not found errors redirect to the login screen?
  Thanks!

  Don,
  In the PL/SQL code of your authorization scheme, you can always do:
  apex_application.g_unrecoverable_error := true;
  owa_util.redirect_url('f?p=&APP_ID.:1');
  return true;
  This will redirect to page 1 (via the login page and then to page 1 after authentication, so change '1' to whatever you want).
  About "page not found" errors, no.
  Scott

• Access Denied Web Application with Claims authentication NTLM only when using secondary URL

  I have a SharePoint 2010 server farm with 2 web front ends, an application server and a database server.  Both front ends are internal to
  our network and are not behind a load balancer.
  NOTE THAT I HAD TO SUBSTITUTE hzzp with hzzp so that I had no links in the body of this post since I am not verified
  I setup a new web application called "SharePoint 41171" with:
  Public URL:
  hzzp://testserver1:41171
  Claims authentication
  NTLM only: no forms auth
  No SSL
  New web site "SharePoint 41171"
  New app pool
  New content database
  I create a top level site collection and name mydomain\myusername as the primary site collection admin
  I am able to access this site as expected at
  hzzp://testserver1:41171 with the aforementioned site collection owner id: mydomain\myusername
  I add an alternate access mapping for a secondary URL for this web application in the Intranet zone:
  hzzp://iwatest.mydomain.com
  So my AAMs for the site read as:
  hzzp://testserver1:41171    
  Default     hzzp://testserver1:41171
  hzzp://iwatest.mydomain.com    
  Intranet     hzzp://iwatest.mydomain.com
  When I attempt to log on to
  hzzp://iwatest.mydomain.com with the same user name and password, I get "access denied".
  I can access this site using
  hzzp://iwatest.mydomain.com if I log in as the farm account.  This is the only account that seems to work.
  Side Note: If I create a separate web application without claims - just NTLM and create the same AAMs, I can login fine with the same secondary
  URL and the same user name
  IP address properly maps to this machine.
  I reviewed the ULS logs and find the following:
  10/30/2012 16:20:23.45              w3wp.exe (0x0E78)                      
                  0x1724       SharePoint Foundation              Monitoring                   
                  nasq                        Medium    Entering
  monitored scope (Request (GET:hzzp://iwatest.mydomain.com:80/_layouts/AccessDenied.aspx?Source=hzzp%3A%2F%2Fiwatest%2Emydomain%2Ecom))                
  10/30/2012 16:20:23.45              w3wp.exe (0x0E78)                      
                  0x1724       SharePoint Foundation              Logging Correlation Data     
        xmnv                        Medium    Name=Request (GET:hzzp://iwatest. mydomain.com:80/_layouts/AccessDenied.aspx?Source=hzzp%3A%2F%2Fiwatest%2Emydomain%2Ecom)      
  8f313b5e-8476-4dd4-9abe-0cb6dbe024b6
  10/30/2012 16:20:23.45              w3wp.exe (0x0E78)                      
                  0x1724       SharePoint Foundation              Logging Correlation Data     
        xmnv                        Medium    Site=/          8f313b5e-8476-4dd4-9abe-0cb6dbe024b6
  10/30/2012 16:20:23.45              w3wp.exe (0x0E78)                      
                  0x1724       SharePoint Foundation              General                      
                     8e2s                        Medium 
    Unknown SPRequest error occurred. More information: 0x80070005       8f313b5e-8476-4dd4-9abe-0cb6dbe024b6
  10/30/2012 16:20:23.45              w3wp.exe (0x0E78)                      
                  0x1724       SharePoint Foundation              Monitoring                   
                  b4ly                        Medium    Leaving
  Monitored Scope (Request (GET:hzzp://iwatest.mydomain.com:80/_layouts/AccessDenied.aspx?Source=hzzp%3A%2F%2Fiwatest%2Emydomain%2Ecom)). Execution Time=8.66003919492561   8f313b5e-8476-4dd4-9abe-0cb6dbe024b6
  Basically it tells me that access is denied.  I didnt see anything that stood out here.
  I found this article:
  hzzp://social.technet.microsoft.com/Forums/en-US/sharepointadminprevious/thread/ded9188b-ee03-4ef0-bb50-3ad138110e0c, which pointed me in the direction of ensuring that the portal
  super user and portal reader accounts were properly added to my web application.  I followed the every popular article on doing this:
  hzzp://technet.microsoft.com/en-us/library/ff758656.aspx, but still no luck.  As per the thread, I added the 2 domain accounts to the user policy with appropriate privilege
  and then set them as the super user and super reader accounts via powershell, and yes I did prefix those names with "i:0#.w|mydomain\".  To be exta sure, I repeated this for all web applications on this server with slightly different powershell steps
  depending on wether or not claims was enabled on the web application.
  The Claims to Windows Token Service is running.
  I saw some mention of ensuring that the secure token service is running with a proper application pool account, but we are not running that service
  and I cant imagine what that would have to do with my situation.
  I have deleted and readded the web application and repeated these steps to no better effect.
  I gave the mydomain\myusername full control for the web application through the user policy, ensured that it was indeed the primary site collection
  owner and added it to the default site owners group.  None of this helped.
  I changed the application pool account to the farm account.  No change in behavior.
  Rebooted IIS and the machines many times along the way.
  Further, when I attempt to sign in as a different user after being denied, I get "an unexpected error has occured message.  I found the following
  in ULS:
  10/30/2012 11:19:03.71 w3wp.exe (0x182C)                      
  0x1210  SharePoint Foundation                 Logging Correlation Data                     
  xmnv     Medium               Name=Request (GET:hzzp://iwatest.mydomain.com:80/_layouts/accessdenied.aspx?loginasanotheruser=true&Source=hzzp%3A%2F%2Fiwatest%2Emydomain%2Ecom)
  cc409ec2-4889-42fa-aa7d-9cc4535e4f0e
  10/30/2012 11:19:03.71 w3wp.exe (0x182C)                      
  0x1210  SharePoint Foundation                 Logging Correlation Data                     
  xmnv     Medium               Site=/    cc409ec2-4889-42fa-aa7d-9cc4535e4f0e
  10/30/2012 11:19:03.72 w3wp.exe (0x182C)                      
  0x1210  SharePoint Foundation                 General                      
           8e2s                Medium               Unknown SPRequest error occurred.
  More information: 0x80070005      cc409ec2-4889-42fa-aa7d-9cc4535e4f0e
  10/30/2012 11:19:03.72 w3wp.exe (0x182C)                      
  0x1210  SharePoint Foundation                 Runtime                      
          tkau                Unexpected       System.NullReferenceException: Object reference not set to an instance
  of an object.    at Microsoft.SharePoint.ApplicationPages.AccessDeniedPage.LogInAsAnotherUser()     at Microsoft.SharePoint.ApplicationPages.AccessDeniedPage.OnLoad(EventArgs e)     at System.Web.UI.Control.LoadRecursive()    
  at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)            cc409ec2-4889-42fa-aa7d-9cc4535e4f0e
  10/30/2012 11:19:03.74 w3wp.exe (0x182C)                      
  0x1210  SharePoint Foundation                 Monitoring                        
  b4ly                Medium               Leaving Monitored Scope (Request (GET:hzzp://iwatest.mydomain.com:80/_layouts/accessdenied.aspx?loginasanotheruser=true&Source=hzzp%3A%2F%2Fiwatest%2Emydomain%2Ecom)).
  Execution Time=22.5439266722447           cc409ec2-4889-42fa-aa7d-9cc4535e4f0e
  By the way, this occurs for the farm account also after a successful login and an attempt to sign in as a different user.
  Any help would be greatly appreciated

  Thanks spadminspadmin:
  I have, though I am not sure that what I've added there is correct:
  The URL that I am trying to use to access the web application's IIS site is hxxp://iwatest.mydomain.com.  I added a binding to the IIS site as follows:
  Type    Host name                      port        IP address
  http     iwatest.mydomain.com     41171     *
  Is that correct?

• Access denied to a security provider on a signed applet

  Hi,
  I'm having permissions problems to work with a security provider.
  The security provider is already installed at java.security. In fact, at Netbeans when debbuging the app it's working perfectly.
  If I'm working the provider in an signed applet, then there are errors.
  Even, I have created a .jar file and I have saved in the /ext directory, wich by default in the java.policy file has got all security permissions.
  grant codeBase "file:${{java.ext.dirs}}/*" {
  permission java.security.AllPermission;
  Even with these granted permissions, I'm getting problems to work with the security provider that I have installed. Also, with these permissions I should be able to install the security provider.
  log:
  <record>
  <date>2012-03-13T12:13:39</date>
  <millis>1331637219126</millis>
  <sequence>17</sequence>
  <logger>appletpdf.appletPdf</logger>
  <level>SEVERE</level>
  <class>appletpdf.appletPdf</class>
  <method>applTest</method>
  <thread>11</thread>
  <message>excepcion: {0} </message>
  <exception>
  <message>java.security.AccessControlException: access denied (java.security.SecurityPermission authProvider.SunPKCS11-Provider-name)</message>
  <frame>
  <class>java.security.AccessControlContext</class>
  <method>checkPermission</method>
  <line>393</line>
  </frame>
  <frame>
  <class>java.security.AccessController</class>
  <method>checkPermission</method>
  <line>553</line>
  </frame>
  <frame>
  <class>java.lang.SecurityManager</class>
  <method>checkPermission</method>
  <line>549</line>
  </frame>
  <frame>
  <class>net.sourceforge.jnlp.runtime.JNLPSecurityManager</class>
  <method>checkPermission</method>
  <line>250</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.SunPKCS11</class>
  <method>login</method>
  <line>1036</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.P11KeyStore</class>
  <method>login</method>
  <line>874</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.P11KeyStore</class>
  <method>engineLoad</method>
  <line>764</line>
  </frame>
  <frame>
  <class>java.security.KeyStore</class>
  <method>load</method>
  <line>1201</line>
  </frame>
  <frame>
  <class>apppdf.appPdf</class>
  <method>tPKCS11</method>
  <line>174</line>
  </frame>
  <frame>
  <class>appletpdf.appletPdf</class>
  <method>applTest</method>
  <line>137</line>
  </frame>
  <frame>
  <class>appletpdf.appletPdf</class>
  <method>initapplDPdf</method>
  <line>116</line>
  </frame>
  <frame>
  <class>sun.reflect.NativeMethodAccessorImpl</class>
  <method>invoke0</method>
  </frame>
  <frame>
  <class>sun.reflect.NativeMethodAccessorImpl</class>
  <method>invoke</method>
  <line>57</line>
  </frame>
  <frame>
  <class>sun.reflect.DelegatingMethodAccessorImpl</class>
  <method>invoke</method>
  <line>43</line>
  </frame>
  <frame>
  <class>java.lang.reflect.Method</class>
  <method>invoke</method>
  <line>616</line>
  </frame>
  <frame>
  <class>sun.applet.PluginAppletSecurityContext$4</class>
  <method>run</method>
  <line>699</line>
  </frame>
  <frame>
  <class>java.security.AccessController</class>
  <method>doPrivileged</method>
  </frame>
  <frame>
  <class>sun.applet.PluginAppletSecurityContext</class>
  <method>handleMessage</method>
  <line>696</line>
  </frame>
  <frame>
  <class>sun.applet.AppletSecurityContextManager</class>
  <method>handleMessage</method>
  <line>69</line>
  </frame>
  <frame>
  <class>sun.applet.PluginStreamHandler</class>
  <method>handleMessage</method>
  <line>273</line>
  </frame>
  <frame>
  <class>sun.applet.PluginMessageHandlerWorker</class>
  <method>run</method>
  <line>82</line>
  </frame>
  </exception>
  </record>
  Fails in the line where the KeyStore is loading:(Pin is correct)
  KeyStore myKeyStore=null;
  Provider p = Security.getProvider("SunPKCS11-Provider-Name");
  myKeyStore = KeyStore.getInstance("PKCS11",p);
  char[] pinData = pin.toCharArray();
  myKeyStore.load(null, pinData);
  Any help would be apreciated.
  Thank you.
  Bye

  Thank you for your information, Frank, as it clarifies part of my confusion. However, there are a couple more loose ends I'd love to address before I mark your responses as answers.
  Do backup and restore privileges apply at all over a network mount created via "net use"?
  The network mount requires a username and password for the destination machine. Assuming the destination machine is a Windows box with a simple CIFS share, how does this user affect our permissions and access? Do we end up effectively impersonating this
  user, or is the access check still done with our sync process's run-as user?
  We require that both our configured run-as user for our sync process *and* the credentials passed to the network mount be administrator users of the local system and destination system, respectively, meaning they're in of the "BUILTIN\Administrators,
  S-1-5-32-544" group.
  On re-syncs, the destination file will exist and since we don't have the ability to read the ACL in all cases (we're running as one user, the file is owned by another user, and we aren't specified in the ACL in any way), we aren't able to determine if the
  file has changed. Is it possible to determine the owner of this file in this case? Preferably, we'd obtain the entire SDDL.
  My proposed plan is to interpret access denied as a difference requiring re-sync, resulting in us taking ownership of the file, granting ourselves access, determining if there are data differences, and then re-syncing the metadata as appropriate.

• Login Access denied due to licenses check error

  Hi,
  User can not login to application server. Error message is u201CLogon is notpossible (Error in license check).
  Permanent license is installed on system. Access was possible till
  couple of months back. Suddenly it started throwing this error.
  This is in High availability environment.
  I can able to login using sap*.
  Status is green in new license in tcode slicense.
  Please guide.
  Regards
  Yogesh Cheulkar

  Hi Yogesh,
  I faced the same issue before .
  It is a database related issue. Your log files are full and that causes this issue. Please check your Archieve log ( If you are using Oracle ) or Transaction log (In MS SQL) .
  Free up some more space in log drive and that will resolve your issue .
  You can take a fresh Transaction log (MS SQL) file backup or archieve log backup (Oracle) to free up the space.
  Try it and it will resolve the issue .
  Best Regards,
  Nibu Antony

• Relay access denied', Port: 25, Secure(SSL): No, Server Error: 554,

  hi configured the server and i am able to receive the emails and i am able to send the emails internally. but when i am trying to send an emails to other domains i am getting this error.

  acserver:~ admin$ postconf -n
  alias_maps = hash:/etc/aliases
  command_directory = /usr/sbin
  config_directory = /etc/postfix
  content_filter =
  daemon_directory = /usr/libexec/postfix
  debugpeerlevel = 2
  enableserveroptions = yes
  html_directory = no
  inet_interfaces = all
  mail_owner = postfix
  mailboxsizelimit = 0
  mailbox_transport = cyrus
  mailq_path = /usr/bin/mailq
  manpage_directory = /usr/share/man
  mydestination = $myhostname,localhost.$mydomain,localhost,mobilekiwi.com
  mydomain = mobilekiwi.com
  mydomain_fallback = localhost
  myhostname = macserver
  mynetworks = 192.168.1.14/32
  mynetworks_style = host
  newaliases_path = /usr/bin/newaliases
  ownerrequestspecial = no
  queue_directory = /private/var/spool/postfix
  readme_directory = /usr/share/doc/postfix
  recipient_delimiter = +
  relayhost =
  sample_directory = /usr/share/doc/postfix/examples
  sendmail_path = /usr/sbin/sendmail
  setgid_group = postdrop
  smtpdpw_server_securityoptions = none
  smtpdrecipientrestrictions = permitmynetworks,reject_unauthdestination,permit
  smtpdsasl_authenable = no
  smtpdtls_keyfile =
  smtpduse_pwserver = no
  unknownlocal_recipient_rejectcode = 550
  virtualmailboxdomains =
  virtual_transport = virtual
  macserver:~ admin$
  macserver:~ admin$
  i am able to receive emails but i am no able to send emails to other domains. but i am able to send emails internally.

• How to give access to my application for my users

  I have created a report in APEX and i want to give access to users(not all) so that they can run the report.

  I created an access control page and i have created two end users to view the application. After that i try to login from end users credentials it is saying
  Access denied by Application security check but if i login in my account and click the run application and give end users credentials it is working.
  Thanks

• Access denied on first login, then it lets the user in (Fedora Core 5)

  I am getting the message "Access denied by Application security check" the first time I login to the db (dba privs.) from a remote machine. Then I click the link to return to the application and log in again. This time it will let me in. Then I close the browser, open back up and it does the same thing. After doing this a few times it lets me in w/o the message until I rebooted, and then it starts the message again (I rebooted both the server and the client come to think of it). At any rate it is installed on FC5, which I am a little green on, however I did somehow manage to get this far.

  Here is a way to design for scheduler running:
  Import-Module ActiveDirectory
  $path='\\UNCLocation\devshare\*'
  $addn = (Get-ADDomain).DistuinguishedName
  $defaultLocation="OU=Homeless,$addn"
  $dnsroot = (Get-ADDomain).dnsroot
  $log = "C:\Path\To\errorlog.log"
  $enabled=$true
  function Logit($type='INFO',$msg,$p1,$p2){
  $text=('[{0}][{1}]{2}[{3}|{4}]' -f [DateTime]::Now,$type,$msg,$p1,$p2)
  Write-Verbose $text
  $text| Out-File $log -append
  Function Create-Users{
  [CmdletBinding()]
  Param()
  Get-ChildItem $path -Include *.csv |
  ForEach-Object {
  $nu=Import-Csv $_
  $sam = $_.FirstName.substring(0,1).ToLower() + $_.LastName.ToLower()
  if(!Get-ADUser -LDAPFilter "(sAMAccountName=$sam)")
  Logit -msg 'Creating user' -p1 $sam
  $setpass = ConvertTo-SecureString -AsPlainText $_.Password -force
  $userprops=@{
  SamAccouontName=$sam
  GivenName=$_.FirstName
  Initials=$_.Initials
  Surname=$_.LastName
  DisplayName=($_.LastName + "," + $_.FirstName)
  UserPrincipalName=($sam + "@" + $dnsroot)
  OfficePhone=$_.Number
  AccountPassword=$setpass
  Enabled=$enabled
  Path=$defaultLocation
  $location = $_.Department + ".$($addn)"
  If ([adsi]::Exists("LDAP://$($location)")){
  $userprops.Path=$location
  Logit -msg "User $sam will be created inctarget OU:" -p1 $location
  }else{
  Logit -type ERROR -msg 'Target OU not found. User will be created in default'
  New-AdUser @userprops
  Logit -msg 'Created new user:' -p1 $sam
  }else{
  Logit -type ERROR -msg 'Username already exists' $sam
  Create-Users -Verbose
  The code loops through all CSVs found.  If you run it in the scheduler every 2 or 3 minutes it will be pretty fast.
  You will need to add a layer of error handling and logging to get it to work smoothly.
  ¯\_(ツ)_/¯