To grant  privileges to user or/and group

Hi,
I need information about to grant privileges on content area and folders.
For example, if I grant privilege to view content on Content area and I grant privilege of Manage Items on folder. Can the users or group add items to folder? Or can they view the content?
Thank you for information,
Noel

I changed the file (sudo vi $ORACLE_HOME/rdbms/admin/externaljob.ora) to read run_user = oracle and run_group = dba. The error remains the same - also after restart of dbconsole. Anyway, the file has note: The user and group specified here should be a lowly privileged user and group for your platform. For Linux this is nobody and nobody. Which it was, and I changed it back to that.
Btw:
SQL> SELECT owner, credential_name, username FROM dba_scheduler_credentials;
no rows selected
SQL> execute DBMS_SCHEDULER.CREATE_CREDENTIAL('oracle','oracle','password');
After the above I was able to select "sys.oracle" as the credential name pull-down menu of the scheduler job edit mode.
And the job succeeded: EXTERNAL_LOG_ID="job_73826_863", USERNAME="oracle"
How does one set credentials if not in the "preferred credential setup" in dbconsole EM?
Edited by: Dude on Jan 14, 2011 2:11 PM

Similar Messages

  • AUDIT action (create, delete, privilege escalation, set and change password from users account and group) users and admins in Solaris 10

    Hello.
    in Solaris 10 i need auditing process create, delete, privilege escalation, set and change password and etc... from users account and group.
    I set settings:
    in file syslog.conf:
    *.info;mail.none;cron.none;audit.notice            @IP-Remote-syslog-server-SIEM
    in file   /etc/security/audit_control:
    dir:/var/audit
    flags:lo,ad,ex,cc,am,no,fc,fd
    minfree:20
    naflags:lo
    plugin:name=audit_syslog.so;p_flags=lo,ad,ex,cc,am,no
    in file   /etc/security/audit_user:
    root:lo,ad:no
    Now I see in the logs only the fact of a connection via SSH and run processes on behalf of users. Creation. delete users, change passwords for some reason do not is logged.
    Many users. For each individual write permissions in the file /etc/security/audit_user not possible, it is likely to forget any new user (or there is a possibility in this file one line to describe the audits for all accounts?)
    Where is the mistake?

    You are most likely hitting Bug 15779000 user/role/groupadd/mod/del don't audit their use.
    And the fix is only available in S11.2.
    -- Renaud

  • Grant privileges to user

    hi all,
    How to create and grant privileges to user using sql command.
    Thanks

    Hi,
    Example :-
    log on as sysdba
    grant connect, resource to test identified by test;
    test is the user.
    Go through this links
    http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/statements_8003.htm#SQLRF01503
    http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/statements_9013.htm#SQLRF01603
    Thanks
    Pavan Kumar N

  • Mapping NT user accounts and groups in BOXI 3.1.i'm getting below error

    Mapping NT user accounts and groups in BOXI 3.1.i'm getting below error
    In BOXI 3.1 CMC
    .NT Authentication is enabled check box is selected.
    In the Mapped NT Member Groups area, entered the NT domain\group in the Add NT Group text box.
    like : secWindowsNT:
    BLRKEC148827D\BusinessObjects NT Users
    getting error like
    "The secWindowsNT security plugin is not enabled. Contact your system administrator for details. (FWB 00002) "

    You shouldn't be using the NT plugin in 3.1, is there a reason you are using this plugin over AD? If you really want to use it you may need to open a case with support and trace the CMS. Are there any groups currently mapped? if you hit update without adding/removing what happens? What if you remove the NT users group and hit update?
    Regards,
    Tim

  • OID-DAS Granting privileges to User

    Hi All,
    I am using OID to store user information from different organizations. I am using OIDDAS ( Delegated Administrative Services) to enter user information. To incorporate the delegation model I am able to create a user and give him privilege to add other users. I can also give him privilege to grant privilege to other users. However, for security purposes I do not want them to be able to grant or use the 'Allow Oracle Delegated Administration Services configuration' privilege, that appears by default in the window. Is there I can alter this.
    Any help on this will be much appreciated.
    Thanks

    It can be done but is not as trivial as GRANT priv TO user. The disco privs are stored in the EULx_ACCESS_PRIVS table. Theoretically, you would just have to add records there to implement the privileges.
    You'll need to look in the EULx_EUL_USERS to get the user IDs, and youd need to find out the application privilege IDs. They are stored in the EULx_ACCESS_PRIVS table, and there are no descriptions. What you would need to do is create a test user, add one privilege, and see what got added to the EULx_ACCESS_PRIVS table. You could then repeat this process for each priv you would want to grant through a script.

  • Granting Privileges to User

    Hi,
    Is it possible to grant privileges (like "Manage Scheduled Workbooks
    ") to the users through backend instead of through OD Administrator? Who can do it and how?
    thanks

    It can be done but is not as trivial as GRANT priv TO user. The disco privs are stored in the EULx_ACCESS_PRIVS table. Theoretically, you would just have to add records there to implement the privileges.
    You'll need to look in the EULx_EUL_USERS to get the user IDs, and youd need to find out the application privilege IDs. They are stored in the EULx_ACCESS_PRIVS table, and there are no descriptions. What you would need to do is create a test user, add one privilege, and see what got added to the EULx_ACCESS_PRIVS table. You could then repeat this process for each priv you would want to grant through a script.

  • How to get Portal Login user ID and Groups using UME API in JSPDynpages

    Hi Experts,
    How can I get the portal logged user ID and bsed on that ID need to get his assigend groups.
    For this Initially I need to get the logged user ID using UME API.
    Can you drop the code to write and display using JSP Dynpages?
    Thanks
    Venkat.

    Hi,
    Try the below code
    IUserFactory userfact=UMFactory.getUserFactory();
    IUser user=userfact.getUserByUniqueName(request.getUser().getUserId());
    String usrid=user.getUniqueName();
    And also you can get the groups assigned to user by using the below code
    Iterator groups = user.getParentGroups(true);
    while (groups.hasNext()) {
         String groupstr = (String) groups.next();
         IGroup g = UMFactory.getGroupFactory().getGroup(groupstr);
         response.write("Group name "g.getUniqueName()"<br>");
    Regards
    Suresh

  • Get inf. about user, rol and group, which shows and works on my webdynpro ?

    Hi everybody,
    Can someone help me? I need the information about rol and group of the user, who's show and work on my webdynpro?

    Hi,
    You can use the below code to get the information you need. You need to add the jar file com.sap.security.api.jar to your Web Dynpro project's build path.
           IRoleFactory roleFactory= UMFactory.getRoleFactory();
        IGroupFactory groupFactory = UMFactory.getGroupFactory();
        try
         IWDClientUser wdUser = WDClientUser.getCurrentUser();
         IUser user = wdUser.getSAPUser();
         Iterator assignedRoles = user.getRoles(true); // true means all the roles are searched recursively
         Iterator assignedGroups = user.getParentGroups(true); // true means all the groups are searched recursively
         while(assignedRoles.hasNext())
              String roleID = (String)assignedRoles.next();
              IRole role = roleFactory.getRole(roleID);
              String roleName = role.getUniqueName();
         // Fill your model node with the role
         while(assignedGroups.hasNext())
              String groupID = (String)assignedGroups.next();
              IGroup group = groupFactory.getGroup(groupID);
              String groupName = group.getUniqueName();
         // fill your model node with group.
        catch(Exception ex)
             messageManager.reportException(ex.getLocalizedMessage(),false);

  • How to Design User Accounts and Groups for Human Task

    Hi All,
    I have a requirement wherein we have a group of people to whom tasks get assigned. Details are below
    Assume
    PO- Purchase Order
    IN- Invoice
    CL1 - Client 1
    CL2 - Client 2
    CL3 - Client 3
    REP1 - User 1
    REP2 - User 2
    REP3 - User 3
    APP1 - Approver 1
    APP2 - Approver 2
    APP3 - Approver 3
    1. There are two groups of people say PO_Team and IN_Team.
    2. REPx are the folks who are in the IN_Team. They handle monitor invoices and run reports on them (READ - Only)
    3. APPx are the folks who are in the PO_team. They approve order and sometimes modify them (READ-WRITE)
    4. CLIx are the clients each of whom send PO and expect IN in return
    5. CLI1 - APP1- REP1 together handle one client.
    Now the requirement is something like this
    1. APP1 must be able to see the PO and IN only from CLI1
    2. APP1 must be able to see editable view of PO from CLI1
    3. APP1 must be able to see red only view of IN from CLI1
    4. REP1 must be able to see the PO and IN only from CLI1
    5. REP1 must be able to see read only view of IN from CLI1
    6. REP1 must be able to see read only view of PO from CLI1
    7. In exception cases APP1 can assign a PO from CLI1 to APP2
    Can someone help me in the design of groups and permissions for this?
    TIA

    Groups are the way to go. Every Human Task can be assigned to either a user or a group or a user and a group. Select the last option so that it goes to a particular user but also to a group. That way anyone in the group can approve these tasks though it is sent to one particular users list. Anyone from that group can pick that task up and approve it

  • Can use RBAC for grant privilege to user on specific directory or not?

    If I want user "aaa:group1" to have write privilege on specific directory of user "bbb:group2" (such as /export/home/bbb).
    Can I use RBAC Feature for this case? How to?
    Because basic permission of Unix very large scope (user, group, other).
    If I specific folder "/export/home/bbb" to rwxrwxr-x, then change group of user "aaa" to group2. Other user in group2 will have write privilege too.
    Thank you.

    If you want fine grain control over directory permissions than the feature you want are access control lists (acl's).
    Try man setfacl, though I warn you that the documentation for acl's are pretty confusing...

  • Can Drill-down paths being made dependent on the user roles and groups

    Hello Experts
    Is it possible to restrict user after certain level of drill down. Here I mean after drilling upto country level from Total World , can we restrict the user to further drill down upto state level.
    OR we can say that we need to restrict certain user to look into transaction level details
    thansk and appreciate any hlep on this.

    i Guess u can...by setting object level security? suppose if you dnt want to drill to state... you can restrict the state column inpresentation laye... so when the user uses the the report he cannot see state and also in drill down....hope this is helpful/answered...

  • How to restrict a schema owner from granting privileges to other users.

    How can we restrict a schema owner from granting privileges to other users on his objects (e.g. tables). Lets say we have user called XYZ and he has tables in his schema TAB1, TAB2 an TAB3. How can we restrict user XYZ from granting privileges on TAB1, TAB2 and TAB3 to other users in the database. Is it possible in Oracle 10g R2? Any indirect or direct way to achieve this? Please help on this.
    Thanks,
    Manohar

    Whenever someone is trying to prevent an object owner from doing something, that's generally a sign of a deeper problem. In a production database, the object owner shouldn't generally have CREATE SESSION privileges, so the user shouldn't be able to log in, which would prevent the user from issuing any grants.
    As a general rule, you cannot stop an object owner from granting privileges on the objects it owns. You can work around this by creating a database-level DDL trigger that throws an exception if the user issuing the statement is XYZ and the DDL is a GRANT. But long term, you probably want to get to the root of the problem.
    Justin
    Edited by: Justin Cave on Nov 6, 2008 9:52 PM
    Enrique beat me to it.

  • SharePoint tool to create External Users and Groups

    Our organization is currently looking for a product that will allow us to create user account and group for users outside the organization (e.g Clients, subcontractors, etc.) and that will only need to access to our external SharePoint Collaboration site.
    We have one product right now but it is very problematic. For example if one of our clients need to change their email address which is their username it won't allow it so the account has to be re-created with the new email address and the permissions re-configured
    all over again. The groups created using the tool called Roles most of the times don't work. We are testing our SharePoint 2013 environment so we thought it is a good time to find something new. If you know of some products that I can check please let
    me know. I will really appreciate it

    Hi,
    According to your post, my understanding is that you wanted to create user account and group for users outside the organization.
    External User Management seems to be a solution. It allows for easy management of external users and roles.
    More information:
    http://ventigrate.codeplex.com/wikipage?title=External%20User%20Management
    Best Regards,
    Linda Li
    Linda Li
    TechNet Community Support

  • How to get the user and groups information from http header

    Hi All,
    In my current scneario, we are using Siteminder for SSO setup.. And in this process, after authentication and authorization, they are going to append the user information and group information of the user into a HTTP header and it will be sent back to our presentation services.. We have to extract the user information and group information from the http header.
    My HTTP header will look like as follows..
    SM_USER XYZ
    SM_USERDN CN=Firstname\, Lastname\, xyz, OU=GPO-Low Level Security,OU=Domain Users,OU=BU FDT,
    SM_USERGROUPS CN=GG-CA-SiteminderAdmins, OU=Global,OU=Domain Groups, DC=com^CN=GG-ServiceDeskAdmin-TCCORPCEFS
    And also if anyone explain me the overall working of SSO in detail like how presentation services will make a connection to BI server( I guess using Impersonator User), and also how our BI server will read the URL from presentation services and the over all working flow in our OBIEE..
    Thanks a lot....

    Please use the search! this topic has come up lots of times already.

  • Portal Users in one database and Groups is other? portal 9.2

    Hi All!
    My question is as follows: Is it possible to have portal users stored in one database and groups stored in other database? Also the these are the groups to which the users belongs and groups already exist as part of the current legacy system. I have to create new application and only store users in the new DB and use the groups from the existing legacy system. Does BEA supports that? Also note that these groups are nothing but custom entities and not in BEA's GROUP table. So is there a way I can write some kind of provider which will extend BEA's user-group framework? I am using BEA portal 9.2.
    Please help!
    Thanks
    Sanjay

    You can fetch data from multiple lists in ListViewWebpart, this can be possible through Content Query web part or Custom Web Part using visual studio but in that case you can not get the standard SharePoint funcationality for list (which is available in
    ListViewWebparts).
    No OOB filter available for multi-choice column, you also have to go with custom solution to achieve this.
    Adnan Amin MCT, SharePoint Architect | If you find this post useful kindly please mark it as an answer.

Maybe you are looking for

  • My usb is not working

    My last 4 days one of my usb port in MAc book air is not functioning. i reformatted the system still the same error persists. need help to troubleshoot the problem

  • More than 2 structures in a BEx query

    Hi guys,   Is it possible to define more than 2 local/global STRUCTURE for a particular query ?

  • Crystal reports for enterprise 4 - media

    Boa tarde, Tenho um report com uma crosstab e necessita de fazer uma media dos campos que não includa na media os campos que estão preenshidos com 0, a media consegui realizar, alguem sabe como fazer com que a media ignore os campos a 0? agradeciment

  • N73 connect computer hardly!

    N73 connect computer hardly. After updating to V4.0727.2.2.1, my phone doesn't ask me using what kind of mode to connect .when I use capable to connect computer.

  • Deductible field in Leave service of ESS

    Hi all We are on ECC 5.0 and Netweaver 2004. In the Leave service there is a tab of Show Leave Balance. When the user clicks the same, his leave balance appears. In the balance display there is a column with the heading Deductible to. Now in this col