UEFI admin user dissapeared on a Probook 5330m

Similar Messages

• Non admin user - changes not saved (Safari settings, system prefs, etc.)

  iMac, 2 users, one is administrator and other is standard user. Recently, in the non-admin user account, it has become impossible to make any changes. For example, adding an application to the the Dock, after logging out and back in next time, the application is not in the Dock any more. Also, making changes to the prefs in Safari, changes are not saved.
  I noticed this after installing FireFox v4. I installed it as admin whilst in the non-admin users account. However, I don't believe that the installation of FF has anything to do with the problem, it just highlighted it. I've checked the permissions for the various directories that hold prefs info such as user/libraries/application prefs/etc. etc. and also Safari prefs. Nothing I can see that has changed in system prefs.
  Any ideas on what has caused the problem (kids are known to fiddle from within the non-admin account) and any ideas on how to fix it?
  Thanks

  Hi PPRuNe,
  You could try making the standard user an Admin too. To do this, make sure you are logged in to the standard user, go to System Preferences > Accounts > Standard user (you may have to unlock the padlock) > Allow user to administer this computer
  This will allow changes to be made without being prompted for a password all the time.
  However, if you had Parental Controls on, they probably won't work on an admin account because as an admin you have complete control over a computer, so the computer thinks there is no point in having the controls turned on. And if the kids are known to "fiddle," just think carefully!
  Hope this helps you.
  Chris.

• Unable to enable security and create admin user after reset - px4-300d

  Our px4-300d became inaccessible a few days ago.  I couldn't get to any shares from any machine, and I couldn't get to the admin console.  When I checked the unit, there was no indication that anything was wrong (ie - the panel didn't show any failure, I didn't get any emails indicating a failure, and there were no lights offering a clue to what was wrong).  However the unit was completely frozen...the buttons on the front would not scroll through the different information on the panel.
  I attempted to reset the device using the pinhole on the back, but the device wouldn't respond, so I had to power it down using the button on the front.  When I tried to power it back up, it would come on for about one second, then immediately power off.  I pulled all 4 drives out and powered it on again without any drives.  This time it came up completely and I got a message on the panel that drives were missing.  I started putting the drives in one at a time and the device recognized them all and I was able to login to the admin console.  However, all the shares were missing and I received an email that the Storage Pool was degraded.  I rebooted the device from the admin console and when it came back up, it started reconstruction.  After a few hours, it completed, but I still had no shares and couldn't create any new shares.  I also did not see any of my users, including the admin account I was logged in with.  I tried to create a new user, and also tried creating a user I knew existed and neither one worked.  The screen would just flash but nothing would show up.  At this point, I decided to try to reset using the pinhole on the back of the device to reset the admin user so I could just create a new one.  So, now I'm stuck at the 'Enable Security' screen.  Every time I try to create an admin account, it just flashes and returns me to the same 'Enable Security' window.  
  Now what?
  Solved!
  Go to Solution.

  If you are unable to get into it you will not be able to do the factory reset. You can try booting in buy removing one disk at a time. If you are still unable to then tech support should be able to supply you with the imager and try flashing it. I would keep it at 4.0.8 also,

• How can I add an admin user in Oracle Unified Directory (OUD) 11g r2?

  I'm using OUD 11G R2. I just installed OUD with the default setting and setup an instance.  I tried to add an admin user with the command:
      ./ldapmodify -h localhost -p 1389 -D "cn=Directory Manager" -w password --defaultAdd --filename admin.ldif
  Here is the content of admin.ldif
      dn: cn=oimuser,cn=Root DNs,cn=config
      objectClass: inetOrgPerson
      objectClass: person
      objectClass: top
      objectClass: ds-cfg-root-dn-user
      objectClass: organizationalPerson
      userPassword: Oracle123
      cn: oimuser
      sn: oimuser
      ds-cfg-alternate-bind-dn: cn=oimuser
      givenName: OIM User
      ds-privilege-name: -config-read
      ds-privilege-name: -config-write
      ds-privilege-name: -backend-backup
      ds-privilege-name: -backend-restore
      ds-privilege-name: -data-sync
      ds-privilege-name: -disconnect-client
      ds-privilege-name: -jmx-notify
      ds-privilege-name: -jmx-read
      ds-privilege-name: -jmx-write
      ds-privilege-name: -ldif-export
      ds-privilege-name: -ldif-import
      ds-privilege-name: -modify-acl
      ds-privilege-name: -privilege-change
      ds-privilege-name: -proxied-auth
      ds-privilege-name: -server-restart
      ds-privilege-name: -server-shutdown
      ds-privilege-name: -update-schema
      ds-privilege-name: -cancel-request
  I got the error as below:
  The provided entry cn=oimuser,cn=Root DNs,cn=config cannot be added because its suffix is not registered with the network group network-group
  Would you please advise how I can fix that? Thanks

  I got the reason. cn=config is an administrative suffix.
  In general, direct LDAP access to the administrative suffixes (using
  the ldap* utilities) is discouraged. In most cases, it is preferable
  to use the dedicated administrative command-line utilities to access
  these suffixes.
  If you must use the ldap* commands to access the administrative
  suffixes, you must use the administration connector port (with the
  --useSSL or -Z option).
  It works when I use the command:
      ./ldapmodify -h localhost -p 4444 -D "cn=Directory Manager" -w Oracle123 --defaultAdd -Z --filename admin.ldif
  You can verify it by:
      ./ldapsearch -h localhost -p 4444 -D "cn=Directory Manager" -w password --useSSL -b "cn=root DNs,cn=config" "cn=oimuser"

• J2ee Admin User locked on SDM Deployment - BI 7.0 and EP 7.0

  Hi,
  We had a recent issue on BI iview publishing from the BEX WAD 7.0 in our Production Portal server.
  The BEX WAD had the error " Java communication error"
  " An Error occured during communication with the BI Components of the J2ee engine"
  We traced down to identify that the current stack NW 7.0 SP14 BI Components had issues and had to patch to the next level
  However, during deployment of the patch using SDM, the components (all) failed posting the following error. The SDM deployment got struck and the J2ee Engine user j2ee_admin was locked.
  Only a restart of the j2ee engine is allowing us to get the Visual Admin connected. But the SDM deployment again is failing and admin user gets locked. Is there any tested solution to solve this.
  Kindly help asap.
  Trace:
  SDM:
  Caught exception while checking the login credentials for SAP J2EE Engine. Check whether the SAP J2EE Engine is up and running.com.sap.engine.deploy.manager.DeployManagerException: ERROR: Cannot connect to Host: [xxxx] with user name: [j2ee_admin]check your login information.
  com.sap.engine.services.jndi.persistent.exceptions.NamingException: Exception during getInitialContext operation. No server is running. [Root exception is com.sap.engine.services.security.exceptions.BaseLoginException: Exception in creating new RemoteLoginContext instance.]          
  J2ee Engine:
  Error while connecting
  com.sap.engine.services.jndi.persistent.exceptions.NamingException: Exception while trying to get InitialContext. [Root exception is java.lang.SecurityException: com.sap.engine.services.security.exceptions.BaseSecurityException: This call must be performed from a system thread.
       at com.sap.engine.services.security.login.SecuritySession.setExpirationPeriod(SecuritySession.java:479)
       at com.sap.engine.services.security.login.TicketGenerator.getSecuritySession(TicketGenerator.java:180)
       at com.sap.engine.services.security.login.SecurityContext.load(SecurityContext.java:313)
       at com.sap.engine.services.rmi_p4.Message.loadContextObject(Message.java:345)
       at com.sap.engine.services.rmi_p4.Message.parseMessage(Message.java:239)
       at com.sap.engine.services.rmi_p4.Message.getByteArrayInputStream(Message.java:314)
       at com.sap.engine.services.rmi_p4.DispatchImpl._runInternal(DispatchImpl.java:212)
       at com.sap.engine.services.rmi_p4.DispatchImpl._run(DispatchImpl.java:200)
       at com.sap.engine.services.rmi_p4.server.P4SessionProcessor.request(P4SessionProcessor.java:136)
       at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
       at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
       at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
       at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)

  Hi Anup,
  The restart unlocks the j2ee engine admin user and i am able to login to Visual admin and SDM and not otherwise (SDM is hanged and doesnot allow another session and hence only restart helps me to get into SDM again)
  Admin Pwds reset etc from config tool secure store and all possible solutions have been tried before restart.
  However, after restart, when we try to deploy again, the deploy fails saying the same msg
  Caught exception while checking the login credentials for SAP J2EE Engine. Check whether the SAP J2EE Engine is up and running.com.sap.engine.deploy.manager.DeployManagerException: ERROR: Cannot connect to Host: [xxx] with user name: [j2ee_admin]check your login information.
  com.sap.engine.services.jndi.persistent.exceptions.NamingException: Exception during getInitialContext operation. No server is running. [Root exception is com.sap.engine.services.security.exceptions.BaseLoginException: Exception in creating new RemoteLoginContext instance.]
  Any clues ?
  Regards
  Venkat.

• How to allow access to winrs for non-admin user?

  I have Windows Server 2012 (and Server 2008, but it is next priority) to monitor it using txwinrm. txwinrm library internally is using WinRS protocol. I have to monitor it using least privileged user, but don't know how to configure access for him.
  All I managed to do - is to configure remote Powershell session for my user, but it's look like that winrs and powershell sessions have different security descriptors:
  Invoke-Command -ComputerName 192.168.173.206 -Credential (credential Administrator $pwd) -ScriptBlock { 2 + 2}
  # gives 4
  Invoke-Command -ComputerName 192.168.173.206 -Credential (credential lpu1 $pwd) -ScriptBlock { 2 + 2}
  # gives 4
  winrs -r:192.168.173.206 -u:Administrator -p:$pwd 'powershell -command "2+2"'
  # gives 4
  winrs -r:192.168.173.206 -u:lpu1 -p:$pwd 'powershell -command "2+2"'
  # Gives Winrs error: Access is denied.
  Configuration for my user is following:
  (Get-Item WSMan:\localhost\Service\RootSDDL).value
  # O:NSG:BAD:P(A;;GA;;;BA)(A;;GA;;;S-1-5-21-3231263931-1371906242-1889625497-1141)S:P(AU;FA;GA;;;WD)(AU;SA;GWGX;;;WD)
  (Get-PSSessionConfiguration -name Microsoft.Powershell).SecurityDescriptorSddl
  # O:NSG:BAD:P(A;;GA;;;BA)(A;;GA;;;S-1-5-21-3231263931-1371906242-1889625497-1149)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)
  (In each security descriptor my user is given general access to protected object).
  So what security descriptor should I set to make my winrs query work for non-admin user?

  Hi Bunyk,
  I can not recreate the erroe you posted, and please also post the screenshoot in your convenience.
  I tested with a non-domain user but has the local admin permission of the remote computer, and this worked, before running the remote cmdlet in powershell, I also configured the TrustedHosts.
  In addition, the access denied could be also caused to the Protocol Filtering on the remote server, for more detailed information, please refer to this thread:
  winrs error:access is denied
  I hope this helps.

• Why can't I access folders on my external hard drive when I am an admin user?

  Early 2011 15" MacBook Pro
  2GHz Intel Core i7
  Lion
  I have a 2TB external hard drive connected to my Airport Extreme that I use to save all of my files.  Both my user profile & my wife's are admin users, however she cannot access the external drive at all.  It has a red circle with a white line through it when you look at it on finder & none of the folders are listed to change permissions under her login.
  When I go to finder under my login, I have selected Read & Write permission for "everyone", but she still cannot access the drive.  When I attempt to add permission for her user profile specifically, I am told "The name you entered isn't valid.  Please try again"
  Help!

  ld3mb wrote:
  Thanks everyone. I suppose I'll just reformat for Apple. I need to use it for large files, and I suppose I could survive without editing ablities on Windows.
  There's another alternative, format it as exFat, 4G limit does not apply and OSX + Windows will be able to read/write.

• Weblogic admin user password change w/o disrupting existing users

  Hi Folks,
  As a business policy we need to change the password of the admin user in weblogic after a cycle of specific period.
  Please let us now how can we do that without losing the other existing users in 'my realm.'
  I understand that we can use the weblogic.utils.security.AdminAcoount utility to give the new password, which will create a new DefaultAuthenticatorInit.ldift file in +<domain-home>/security+ folder (according to Doc ID 1082299.1).
  The password will change but the users in 'my realm' will be lost. (there are many users and it is a production environment so recreation is out-of- question)
  Is there a way we can retain the users and still proceed with the password change?
  Cheers,
  Jeegar

  Hi Jeegar,
  This can be doen by followin the standard procedure by login to console and navigate to :-
  DOMAIN_STRUCTURE--->Security Realm--->myrealm--->Users and Groups---->User tab click on the user weblogic
  --click on the password tab and put the new password there and save (password is changed for the user here)
  ---Logout from the console and login to the console again using the new password
  But when the server starts it do not read the password for the user directly from the realm rather it picked the same from the $DOMAIN_HOME/servers/AdminServer/security/boot.properties
  Now in order to make this change available when the server starts change the values for the username and password in boot.properties and specify them in plain-text and save the same.
  Now next time whenever the server will start it will pick up the new values from the boot.properties and once the same had been accepted those will be encrypted again.
  You might have to make the change for the boot.properties for all the Managed Server if you have the Managed Servers in the domain which will be located at the location $DOMAIN_HOME/servers/<<Managed Server Name>>/data/nodemanager/boot.properties
  You can test the steps on some lower environment first and try the same in Critical environment once the testing goes successful.
  Regards,
  Vijay
  Edited by: V Kumar on Oct 25, 2012 3:06 PM

• MultiSim 9.0.41. Non-admin users unable to launch program without error messages.

  I have installed MultiSim 9.0.41 has been installed on four workstations. The PCs reside within a local domain with ten users. The domain resides within the greater university domain, is technically not configured as a true subdomain, but it has access to university domain resources (such as the license server). We have SSO (remote profiles) functionality enabled.
  MultiSim runs with without problems for admin users. We start having issues with nonadmin users. I series of pop-up messages appear when the program is launched:
  "The Microsoft Jet database engine can not open the file C:\Program Files\Electronics Workbench\EWB9\database\mscomp_s.prd. It is already opened exclusively by another user, or you need permission to view its data."
  "The Microsoft Jet database engine can not open the file C:\Program
  Files\Electronics Workbench\EWB9\database\CPCOMP_S.PRJ. It is already
  opened exclusively by another user, or you need permission to view its
  data."
  "Error loading library C:\Program
  Files\Electronics Workbench\EWB9\PCBComponentEdit.dll, ('998') Invalid access to memory location."
  "The Microsoft Jet database engine can not open the file C:\Program
  Files\Electronics Workbench\EWB9\database\mscomp_s.prd. It is already
  opened exclusively by another user, or you need permission to view its
  data. Error Code:3051"
  Solutions attempted (without success):
  - Update program (no updates found via update manager or NI site)
  - Run program as admin
  - Give all users full permissions to program files (major security risk)
  - Change "Directory for EWB Shared Components" to public shared drive. Interestingly, MultiSim shows the network drive as unwritable (though it clearly is).
  Any ideas? Are there updates that fix this issue? Is this solved by the newest version? What do I need to do differently to ensure that user config files are saved in their roaming profiles vs. locally (note: I have already tried to correct the paths during install and post-install without success).
  Thanks!
  Message Edited by refriend on 05-22-2008 02:26 PM

  Hi Refriend,
  The error message indicates Multisim is not able to read/write to the database folder.  Please have a look at the following knowledge base article for instructions to correct the database problem.
  http://digital.ni.com/public.nsf/allkb/B06773CE511C7E588625720B00502B8E
  Multisim 9, you need to setup the permission for the database manually but in version 10, this step is not required.  As for saving user config file as part of the roaming profile, this option is not available.  Multisim will always look in the locale drive for the config file and if one does not exist it will create one for that user and save it locally.
  Tien P.
  National Instruments

• How can I transfer iPhoto files from one admin user to another on the same Mac?

  i created a new admin user on my computer, so now my husband has one and so do i. how can i transfer our iphoto files from his admin user to mine as a shared file? i was able to do this with itunes easily but i am not able to do it with iphoto.

  You want to share the Library?
  For iPhoto 09 (version 8.0.2) and later:
  What you mean by 'share'.
  If you want the other user to be able to see the pics, but not add to, change or alter your library, then enable Sharing in your iPhoto (Preferences -> Sharing), leave iPhoto running and use Fast User Switching to open the other account. In that account, enable 'Look For Shared Libraries'. Your Library will appear in the other source pane.
  Any user can drag a pic from the Shared Library to their own in the iPhoto Window.
  Remember iPhoto must be running in both accounts for this to work.
  If you want the other user to have the same access to the library as you: to be able to add, edit, organise, keyword etc.
  Quit iPhoto in both accounts. Move the Library to the Users / Shared Folder
  (You can also use an external HD set to ignore permissions, a Disk Image or even partition your Hard Disk.)
  In each account in turn: Double click on the Library to open it. (You may be asked to repair the Library Permissions.) From that point on, this will be the default library location. Both accounts will have full access to the library, in fact, both accounts will 'own' it.
  However, there is a catch with this system and it is a significant one. iPhoto is not a multi-user app., it does not have the code to negotiate two users simultaneously writing to the database, and trying will cause db corruption. So only one user at a time, and back up, back up back up.

• How do I delete one of two admin users in Mountain Lion?

  Hi,
  I have just migrated data from my iMac (Snow Leopard) to a new Macbook Pro (10.8). When setting up the computer at the Apple store, I chose my name and surname to set the computer (icon image is an eagle from the Apple library).
  When I then migrated the data (via external backup and using migration assistant) to the new Macbook, I was prompted to rename the user account ("the user account that you are transferring has the same name as an existing account on your computer. you can't have two user accounts with same name on your computer"). So I renamed the account differently.
  All my data has migrated correctly, including my emails. But I cannot see my personal icon in my mailboxes in Mail, I still see the image of the eagle. I went into system preferences and wanted to delete the original admin user account (the one with the eagle image) but it is greyed out and I cannot delete it.
  What is happening exactly? Why do I see the icon of the other admin user account in my mail and not the one I used on my old iMac. How can I delete this user account? Is there a particular reason why I couldn't delete this account?
  thanks for any guidance I can get on this

  Morning Gean40,
  Thanks for using Apple Support Communities.
  For more information on this, take a look at this article:
  You can't empty the Trash or move a file to the Trash
  http://support.apple.com/kb/ht1526
  Best of luck,
  Mario

• How do I move an iPhoto library between two users (secondary user to admin user) on the same mac?

  Hi there,
  I accidentally created a second profile for myself on a mac some time ago in a migration and am now starting to move all my files from the second profile to the admin profile.
  I want to move my iphoto library from the secondary user to the admin user but I don't know which file to move.
  Is it as simple as copying the iphoto library in the pictures directory to the shared users drive and then copying that file over to pictures directory in the admin profile?
  What if there already is an iphoto library under the admin user? Should I uninstall iphoto, then copy the file over and then install iphoto?
  What is the best way of doing this?
  Any help would be much appreciated.
  Philip

  Is it as simple as copying the iphoto library in the pictures directory to the shared users drive and then copying that file over to pictures directory in the admin profile?
  Yes.
  What if there already is an iphoto library under the admin user?
  Are there photos in this Library? If not, overwrite it. If there are then you'll need to rename one of the libraries to prevent overwriting. Then you can use iPhoto Library Manager to merge them
  Should I uninstall iphoto, then copy the file over and then install iphoto?
  No.
  Regards
  TD

• What is the "admin" user in EAS Console?

  I am still relatively new to Planning and Essbase.   I am trying to figure out the relevance of "admin" user in the Essbase Administration Console.  My colleague and I have seen several instances of this admin user in EAS console but it doesn't appear to represent a "live" user.  We have also seen references to "admin@native directory" in the Essbase and EssbaseODL logs.  In the last couple of days, we were unable to run a script that automatically backs up a database because this admin user was performing a spreadsheet operation. We were able to successfully force the admin account off via the console but we know for a fact that no one else is logged in. 
  Below are excerpts from the Essbase log.  Please see the text in red.
  Any insight on this would be greatly appreciated.
  Thanks!
  Essbase.log
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1051164)*Received login request from *[::1]
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1051187)*Logging in user *[EPM11hypplan@AD]* from *[::1]
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3096*Info*(1051001)*Received client request: *List Connected Users *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***2100*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***2100*Info*(1051037)*Logging out user *[admin@Native Directory]*, active for *63 *minutes
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3020*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3020*Error*(1013291)*Failed to logout user *[admin@Native Directory]*: user has requests running
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3020*Warning*(1051003)*Error *1013291 *processing request *[Logout User]* - disconnecting
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3360*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3360*Error*(1013291)*Failed to logout user *[admin@Native Directory]*: user has requests running
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3360*Warning*(1051003)*Error *1013291 *processing request *[Logout User]* - disconnecting
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1013220)*Supervisor *[EPM11hypplan@AD]* has forced user *[admin@Native Directory]* to logout
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1051037)*Logging out user *[admin@Native Directory]*, active for *48 *minutes
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3096*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3096*Info*(1013220)*Supervisor *[EPM11hypplan@AD]* has forced user *[admin@Native Directory]* to logout
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3096*Info*(1051037)*Logging out user *[admin@Native Directory]*, active for *28 *minutes
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***2100*Info*(1051001)*Received client request: *Logout User *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***2100*Error*(1051020)*Cannot log yourself out!
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***2100*Warning*(1051003)*Error *1051020 *processing request *[Logout User]* - disconnecting
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3020*Info*(1051001)*Received client request: *Select Application/Database *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3020*Info*(1051009)*Setting application *FinPlan *active for user *[EPM11hypplan@AD]
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3360*Info*(1051001)*Received client request: *Get Application State *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3092*Info*(1051001)*Received client request: *Set Application State *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:15:08*2013*Local*ESSBASE0***3096*Info*(1051001)*Received client request: *List Objects *(from user *[EPM11hypplan@AD]*)
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***2100*Error*(1051021)*You have been logged out due to inactivity or explicitly by the administrator.
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***2100*Warning*(1051003)*Error *-1 *processing request *[List Substitution Variables]* - disconnecting
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***3020*Info*(1051001)*Received client request: *Logout *(from user *[admin@Native Directory]*)
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***3020*Info*(1051037)*Logging out user *[admin@Native Directory]*, active for *49 *minutes
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***3360*Info*(1051001)*Received client request: *Logout *(from user *[admin@Native Directory]*)
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***3360*Info*(1051037)*Logging out user *[admin@Native Directory]*, active for *2 *minutes
  Fri*Oct*18*07:16:33*2013*Local*ESSBASE0***3092*Info*(1051164)*Received login request from *[::ffff:10.112.14.74]

  Admin user is a administrator user or a super user in essbase .Admin user has full permission to access the entire system  which includes all users and groups.Admin user has the rights to create users Perform dataloads,write and execute calculations,delete users
  In your log i can see admin user was active and doing some operations. EPM11hypplan user has forced admin user logout of server.I guess you have set up EPM11hypplan user which has same privilege of admin user to run process.Also check if any particular job process is run via admin id .
  More info refer the below url
  http://docs.oracle.com/cd/E17236_01/epm.1112/esb_dbag/frameset.htm?dsenative.html
  Thanks,
  Sreekumar Hariharan

• A Solution for Enabling Sandbox activation by non admin users for testing (OIM 11gr2 PS2)

  I just wanted to post what i came up with as a solution the the problem of not being able to Test the effects of sandbox changes for non admin level users prior to their publication.  We are constantly making changes to the UI through sandboxes, the problem is rolling a sandbox back isn't easy, and we cannot be sure of the effects they will have on non administrative users until they are published, since the out of the box sandbox link isn't available to non Sysadmin level users.
  To allow these non admin user accounts to test the effects of sandbox changes in our development environment, I did the following (as always, follow at your own risk):
  Create and activate a new sandbox.
  Close all open tabs (including the Home and Sandbox tabs) and click the "Customize" link.
  Click the view -> source drop down in the upper left.
  After the source is visible, click the Accessibility or Sandbox link to find the area that you will add the new "UserSandboxTest" (call it whatever you want) link.
  Add a new commandImageLink directly in the panelGroupLayout: horizontal item before the "switcher" item (see the UserSandboxLink in my screen shot below):
  Edit the Link you just inserted, Entering whatever you want the link to display as in your browser in the "Text" field.
  Export the sandbox.
  Unzip the exported sandbox and navigate to the IdmShellV2.jspx.xml (path should be: \templates\mdssys\cust\site\site).
  Edit the IdmShellV2.jspx.xml file and find the new item you added in step 5.
  Add the following to the commandImageLink xml item: actionListener="#{pageFlowScope.uiShell.context.launchSandboxes}" rendered="#{oimcontext.currentUser.roles['SANDBOX_USER'] != null}".  Note: I used a new custom enterprise role, SANDBOX_USER, to control the display of the new link, You should substitute whatever EL conditions you need in the rendered property.
  Save your IdmShellV2.jspx.xml file and zip the contents back up, just like you would for any other customization.
  Import your newly edited sandbox back into the target environment.
  Publish the sandbox.
  This seems to work great for allowing us to test other sandbox changes effects on different types of users. 

  On step 10, adding the check to determine if the user should have access to the role ended up breaking access to the unauthenticated pages like the self registration page and the forgot userid/user login pages.  Non-authenticated users cannot execute the method to return the role, so that fails which leaves the page not loading.  To correct this I changed the rendered property to rendered="#{securityContext.authenticated}".  This prevents the link from displaying on non authenticated pages, but displays for anyone else who's logged on.  We only plan on using this in our development environment where no one but developers and system admins have access anyway, so it's not an issue that everyone will see the link.  I wouldn't recommend putting this in an environment where end users will be logging in and testing without developing a method (or finding another way to limit the display) that can be called by unauthenticated users to prevent them from seeing the link.

• JSPM phase error : admin/user/SID does not exist

  Hi ,
  There is an error message while opening the JSPM
  Phase error report:
  "cannot read secure store properties .could not set up secure store.property admin/user/SID does not exist.msg.util.dyn.0003.com.sap.security.core.server.secstore.secstoreFS get string value
  com.sap.security.core.server.secstore.secstoreFS.Not found exception could not find a record key "admin/user/SID" in the store com.sap.security.core.server.secstore.secstorefs"
  checked the config tool secure store and found no entry maintained for /admin/user/SID.
  How to add the new entry in config tool and what is post entry procedure
  Thanks a ton

  Hello Daniel,
  You can maintain the Administrator user in secure storage using the config tool.
  By default, the value for this config tool property is user Administrator. However, when using the ABAP Engine for persistency, this user is J2EE_ADMIN.
  Following are the steps:
         1.      Start the Config Tool.
         2.      Select secure store.
                  The configuration for the secure storage in the file system appears.
         3.      Select the key admin/user/<SID>.
         4.      Enter J2EE_ADMIN in the Value: field and choose Add. 
         5.      Select the key admin/password/<SID>.
         6.      Enter the password for J2EE_ADMIN in the Value: field and choose Add.
         7.      Save the configuration.
  The corresponding link is mentioned below:
  http://help.sap.com/saphelp_nw04/helpdata/en/ae/b7ceff3e40fd42be3a6503236f9746/content.htm