Unable to push user profiles to AD groups with Profile Manager since upgrade to Server v3

Similar Messages

• Unable to created users through UME on portal with AS ABAP as its data sorc

  Hi,
  Unable to created users through UME on portal with AS ABAP as its data source.
  I have assigned SAP_BC_JSF_COMMUNICATION to the user SAPJSF but this only helps in editing the already existing users but not in creating new users on portal.
  I have checked that that the role SAP_BC_JSF_COMMUNICATION is properly generated and has *  in all authorizations. I have even assigned SAP_ALL and SAP_NEW to SAPJSF and another ID.
  DO we need to make any config changes to make the database writable from portal. Please advise.
  Thanks,

  Hi,
  If your system is a AS ABAP + +JAVA System,, you have to do the following
  1. Login to Client 001 using SAP GUI
  2. Create a user id
  3. Login to portal and you will be able to see the user.
  4.Assign him the portal rights
  If you want the portal to use seperate Database for USers, there is a setting in Visual admin, that you can change for the same, but i dont remember that

• Restricting end user to one specific group with anyconnect

  Hello all
  I just started configuring AnyConnect with ASA 5520 that uses Cisco SecureACS to pass radius authentication.  I configured two profiles with different split tunnel restrictions and what I discovered is that when the client connects to the ASA, they are provided a choice of these two groups (I guess there is no way to restrict this) and I can log into either one with any user account.  How do I restrict this so that the user can only use one profile?  Currently users capable of VPN would be placed in one specifc AD group so that is what SecureACS checks.  Is there a sample configuration guide to handle multiple profiles with different levels of access?

  Alternatively, you can use Radius authorization to place user into a specific group-policy:
  - Configure the Group-Policy attribute under Radius to be OU=
  http://www.cisco.com/en/US/docs/security/asa/asa91/configuration/vpn/vpn_extserver.html#wp1605475
  On  the ASA, just configure 1 tunnel-group, and depending on the  authentication, the user will be placed into the correct group-policy  specified under the ACS server.

• Remove Users and Members of Groups with DIP

  We are using the DIP connector to map between NONLDAP(oracle DB) and OID. We are using a profile to create and update users. We have another profile that will create any new groups. We are currently working on a third profile that will populate the groups with their members. These profiles look at views in our oracle DB to determine when they were last updated.
  We have been successful at creating and updating users and creating new groups. I have not found any documentation to remove a user or remove a member from a group. Is there a way in the mapping file or the configuration file to tell OID that a user needs to be deleted or a member needs to be deleted from a group?
  Has anyone had any experience with this?

  If your question is whether you can use the DIP DB connector
  to synchronize group and group memberships, then yes
  you can.
  Keep in mind though, that the DB connector will do a full
  refresh of the group memberships (and not incremental)
  We are using the DIP connector to map between
  NONLDAP(oracle DB) and OID. We are using a profile
  to create and update users. We have another profile
  that will create any new groups. We are currently
  working on a third profile that will populate the
  groups with their members. These profiles look at
  views in our oracle DB to determine when they were
  last updated.
  We have been successful at creating and updating
  users and creating new groups. I have not found any
  documentation to remove a user or remove a member
  from a group. Is there a way in the mapping file or
  the configuration file to tell OID that a user needs
  to be deleted or a member needs to be deleted from a
  group?
  Has anyone had any experience with this?

• Wiki - No group with that name hosted on this server?

  I tried to create a wiki for a group of users on my server. Unfortunatly I couldn't get it to work through the external website. Everytime I returns the error "404: No group with that name (team) hosted on this server". But when I went to the internal adres of the server "10.0.3.1" the wiki worked fine, although I selected the FQDN at "Enable the following services for this group on".
  I searched the forums but no solution helpt. I checked the MAC address, restarted teams, restarted webservices, rebooted the server. Because nothing helpt I recreated my opendirectory database. Filled it with all users again but it still doesn't work. However, when I go to server admin and then to "Sites" all my sites are gone, although they do work, I can't edit any of the settings. In Workgroup Manager at "Enable the following services for this group on" I can only select "NONE".
  It looks like Server Admin and Workgroup Manager are out of Sync and Server Admin also lost his previous settings. I tried to import an backup of the webservices, then the new sites appear for a few seconds and then disappear again.
  Any advise?

  It sounds like you have a DNS problem. You have one hostname/IP for the 'world' and another hostname/IP for your internal network. You need to reconcile that before you will get the wiki to work. Start with this in Terminal.app:
  sudo changeip -checkhostname
  Then do:
  sudo hostname

• User State Migration using SMP with config manager 2012 R2

  Hi , 
  I have SMP at primary site and need to migrate XP and 7 machines using this SMP (using USMT), 
  what are the steps do i need to define in TS so that usmt can use State migration point for user setting\data backup?
  Another challenge i see it with XP since we are deciding to take 2 phase approach, that means we will backup data using 1 TS (3 step TS) and then restore data as part of another TS that will install windows 8.1 also with user state restore. 
  Any pointers if we need to define anything special in TS (migration store etc.) or since its SMP, TS should able to take care of finding it automatically and backup\restore user state? 
  We have MDT based TS, just wondering if we need to define anything inside CS.ini file related to SMP? 
  Any pointers will be appreciated. Thanks
  Regards,

  Hi,
  Please refer to the link below:
  How to migrate user data from Windows XP to Windows 8.1 with System Center 2012 R2 Configuration Manager
  http://blogs.technet.com/b/configmgrteam/archive/2013/09/12/how-to-migrate-user-data-from-win-xp-to-win-8-1-with-system-center-2012-r2-configmgr.aspx
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How do you send texts to more than 10 people with iMessage? Since upgrading to iOS5 I cant send to my 100 people as a group. The screen freezes. I have an iPhone 4.

  I upgraded my wife iPhone 4 to iOS5. She was able to text to about a100 people at the same time. Now she can't. Of course, I was more eager to upgrade her phone than she was since she is skeptical of technology. I can't seem to undue to upgrade. How do I fix our current problem.

  Trademann wrote:
  Fox, that does not work, because then you are blocked from sending any form of message to another Apple user. iMessage MUST be activated to text any other iOS device. And then Apple defaults by ALWAYS using iMessage between iOS devices.There is simply no way, within iOS 8, to send SMS only to another Apple user. Apple has made that impossible.
  The SMS-only choice used to be on the same menu level as iMessage, but  now it is locked WITHIN iMessage, and is not available as a choice unless iMessage is activated. Then it is limited solely to being used if iMessage is not available.
  I'm sure their argument is that they are saving their customers money because iMessage is free, but they are imposing an opportunity cost on 100 percent of their user base in the guise of saving that money. What they are really doing is entrapping faithful users such as myself further within the Apple ecosystem. If I hadn't already spent thousands of dollars on my iTunes library I might consider a Galaxy ... Samsung does not deserve to regain any momentum if they can't figure out how to exploit this.
  Turning off iMessage does not prevent you from sending messages to other Apple users.  You can send an SMS to any iPhone without your own iMessage turned on, even if it is turned on on their iPhone.
  The SMS-only option is: Turn off iMessage.  Literally.  That's it.

• Managed Settings missing in Profile Manager after upgrade to Server 3 bis

  Hi all,
  I have alsmot the same issue than the one which is described into this discussion: https://discussions.apple.com/message/23468341#23468341
  However, I have different logs:
  —————————— [0m
  2:: [13358] [2013/11/07 11:20:49.999] Updating PGModel 'TemporaryUniqueIntegerTable' (table '__runtime_temp_migration_tool-41210-4494')
  2:: [13358] [2013/11/07 11:20:50.003] Deleted 0 rows from installed_applications for device 741
  0:: [13358] [2013/11/07 11:20:50.012] Migrated 'Device' in 5455.11ms. (346 rows processed)
  3:: [13358] Total transaction time: 5.497234 seconds.
  1:: [13358] [2013/11/07 11:20:50.307] Starting migration of 'LabSession'...
  2:: [13358] [2013/11/07 11:20:50.321] Updating PGModel 'LabSession' (table 'lab_sessions')
  0:: [13358] [2013/11/07 11:20:55.479]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 23505 (ERROR:  duplicate key value violates unique constraint "owner_lab_sessions_device_id_index"
      DETAIL:  Key (device_id)=(459) already exists.
      )"> [0m [0m
  0:: [13358] [2013/11/07 11:20:55.481]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 23505 (ERROR:  duplicate key value violates unique constraint "owner_lab_sessions_device_id_index"
      DETAIL:  Key (device_id)=(459) already exists.
      )">
      USERINFO: {
          SQLSTATE = 23505;
          errorMessage = "ERROR:  duplicate key value violates unique constraint \"owner_lab_sessions_device_id_index\"\nDETAIL:  Key (device_id)=(459) already exists.\n";
       [4;31mBACKTRACE: [0m
       [0;31m? | 4504946144
      ? | 4504828986
      ? | 4502611981
      ? | 4502595291
      ? | 4502594561
      ? | 4504952326
      ? | 4504829847
      ? | 4502593897
      ? | 4502617909
      ? | 140735650727421
      ? | 2
       [0m [0m
  0:: [13358] [2013/11/07 11:20:55.481]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
      )"> [0m [0m
  0:: [13358] [2013/11/07 11:20:55.482]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
      )">
      USERINFO: {
          SQLSTATE = 25P02;
          errorMessage = "ERROR:  current transaction is aborted, commands ignored until end of transaction block\n";
       [4;31mBACKTRACE: [0m
       [0;31m? | 4504946144
      ? | 4504828986
      ? | 4502601229
      ? | 4502595291
      ? | 4502594561
      ? | 4504952326
      ? | 4504829847
      ? | 4502593897
      ? | 4502617909
      ? | 140735650727421
      ? | 2
       [0m [0m
  0:: [13358] [2013/11/07 11:20:55.483] Caught unhandled exception -[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
  0:: [13358] [2013/11/07 11:20:55.483] *****************************************
  0:: [13358] [2013/11/07 11:20:55.483] Migration from version 1 database failed!
      -[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
  0:: [13358] [2013/11/07 11:20:55.483] *****************************************
  4:: [13358] Total transaction time: 0.003722 seconds.
  1:: [13358] [2013/11/07 11:20:55.487] Finalizing migration....
  2:: [13358] [2013/11/07 11:21:19.158] main RESULT:
        [1;32m————————+————————————————————————————————————————————————————————————————   ——————————————————————————————————————————————————————————————————————————————— — —————————————— [0m
  Do you have an idea?
  Thanks a lot in advance

  Hi all,
  I have alsmot the same issue than the one which is described into this discussion: https://discussions.apple.com/message/23468341#23468341
  However, I have different logs:
  —————————— [0m
  2:: [13358] [2013/11/07 11:20:49.999] Updating PGModel 'TemporaryUniqueIntegerTable' (table '__runtime_temp_migration_tool-41210-4494')
  2:: [13358] [2013/11/07 11:20:50.003] Deleted 0 rows from installed_applications for device 741
  0:: [13358] [2013/11/07 11:20:50.012] Migrated 'Device' in 5455.11ms. (346 rows processed)
  3:: [13358] Total transaction time: 5.497234 seconds.
  1:: [13358] [2013/11/07 11:20:50.307] Starting migration of 'LabSession'...
  2:: [13358] [2013/11/07 11:20:50.321] Updating PGModel 'LabSession' (table 'lab_sessions')
  0:: [13358] [2013/11/07 11:20:55.479]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 23505 (ERROR:  duplicate key value violates unique constraint "owner_lab_sessions_device_id_index"
      DETAIL:  Key (device_id)=(459) already exists.
      )"> [0m [0m
  0:: [13358] [2013/11/07 11:20:55.481]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 23505 (ERROR:  duplicate key value violates unique constraint "owner_lab_sessions_device_id_index"
      DETAIL:  Key (device_id)=(459) already exists.
      )">
      USERINFO: {
          SQLSTATE = 23505;
          errorMessage = "ERROR:  duplicate key value violates unique constraint \"owner_lab_sessions_device_id_index\"\nDETAIL:  Key (device_id)=(459) already exists.\n";
       [4;31mBACKTRACE: [0m
       [0;31m? | 4504946144
      ? | 4504828986
      ? | 4502611981
      ? | 4502595291
      ? | 4502594561
      ? | 4504952326
      ? | 4504829847
      ? | 4502593897
      ? | 4502617909
      ? | 140735650727421
      ? | 2
       [0m [0m
  0:: [13358] [2013/11/07 11:20:55.481]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
      )"> [0m [0m
  0:: [13358] [2013/11/07 11:20:55.482]  [1;7;31mEXCEPTION: [0;31m  Postgres <-[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
      )">
      USERINFO: {
          SQLSTATE = 25P02;
          errorMessage = "ERROR:  current transaction is aborted, commands ignored until end of transaction block\n";
       [4;31mBACKTRACE: [0m
       [0;31m? | 4504946144
      ? | 4504828986
      ? | 4502601229
      ? | 4502595291
      ? | 4502594561
      ? | 4504952326
      ? | 4504829847
      ? | 4502593897
      ? | 4502617909
      ? | 140735650727421
      ? | 2
       [0m [0m
  0:: [13358] [2013/11/07 11:20:55.483] Caught unhandled exception -[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
  0:: [13358] [2013/11/07 11:20:55.483] *****************************************
  0:: [13358] [2013/11/07 11:20:55.483] Migration from version 1 database failed!
      -[PGConnection executeCSQL:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Models/Postgres/PGConnection.m:323): "Postgres error 25P02 (ERROR:  current transaction is aborted, commands ignored until end of transaction block
  0:: [13358] [2013/11/07 11:20:55.483] *****************************************
  4:: [13358] Total transaction time: 0.003722 seconds.
  1:: [13358] [2013/11/07 11:20:55.487] Finalizing migration....
  2:: [13358] [2013/11/07 11:21:19.158] main RESULT:
        [1;32m————————+————————————————————————————————————————————————————————————————   ——————————————————————————————————————————————————————————————————————————————— — —————————————— [0m
  Do you have an idea?
  Thanks a lot in advance

• Unable to send web content emails from mail as web page since upgrading to the new OS X 10.9

  I am no longer able to send web content emails from mail as web page. The images / layout no longer transmit. This started when I upgraded to the new OS X 10.9. The emails appear correctly in the orginal message prior to sending but once they are sent all the images and layout are removed. The sent message folder shows the emails in the changed versions vs what the draft showed prior to sending. If the webpage is only an image my final sent message will only show an empty box with an question mark.

  Hold down the option key and select
   ▹ System Information...
  from the menu bar. In the window that opens, select
  Hardware ▹ USB
  from the list on the left. On the right you should now see a list of all connected USB devices, as well as some built-in components. Is the device shown?

• Nested AD User Groups in Workgroup Manager not working in Mavericks

  The setup is the traditional Golden Triangle, so Active Directory for users and groups, Open Directory for Managed Preferences. Both Apple clients and server are running 10.9.0
  While I can successfully manage the Mac's via OD computer groups, the OD user groups with nested AD groups no longer appear to work. If I nest an AD user it works fine, but not the AD users group.
  This is a new AD and new OD, no migrations. This is a setup I've done countless times over the years, but since Mavericks has been introduced, I can no longer make this work.
  Any help would be greatly appreaciated.
  Thanks,
  Alex Price

  Hello
  I have been having the same problem, when adding an AD Group to an OD group the users in the AD group are not managed, but if i add the user to the OD group it works fine, (with about 5000 active users this is not an option) this has been a problem with 10.9 and has not been fixed with 10.9.1, i assume we need a update to Workgroup manager?
  Maverick server is useless at the moment, cant upgrade the clients to Maverick if i cant manage them, are Apple just tring to make my job more difficult than it needs to be, i was happy that they provided Workgroup Manager for Mavericks because Profile Manager is simple not an option, but it would be good if it worked properly, its not a small problem so you would think apple would make it a priority.

• How to create users with i18n characters in SunONE directory server?

  Was trying to create users and groups with i18n characters in SunONE directory server
  1. Started LDAP console using -l option
  2. Chaged the Locale to Japanese
  3. Entered few japanese character as username (meaning internationalization user name)
  4. However, I could not able to type the password using the "soft keyboard" that comes with Japanese Locale
  5. to overcome with #4, for now, I typed english chars as the password
  6. Click OK to save the above username/pwd
  7. It says "netscape.ldap.LDAPException: error result (19); value of attribute "uid" contains extended (8-bit) characters"
  Has anyone ever created i18n user names in SunONE Directory Provider? Please help...

  Hi LostLad,
  Soryy for my ignorance...Could you please be elaborate on how to remove "uid attribute from 7-bit ASCII plugin?
  Thanks in advance..

• Unable to start User Profile Sync Service

  Hi,
  I am currently facing some issues with starting the User Profile Sync Service on my SP2013 farm.. I was wondering if someone could help me out a bit.
  I have successfully installed the SP2013 farm on a environment that has access to our AD etc. and I have also
  restored the database from SP2007 and converted it to Claims authentication etc. The one thing I can’t get to work is to enable the User Profile Sync Service on the server. I have checked quite a bit of TechNet blogs and other sites and tried almost everything
  suggested but it still fails. I’ve also recreated the farm from scratch yesterday again but no luck still
  L.
  The below is what I have done:
  Farm Admin account – spadmin2013 is local admin on all SP Farm servers (2 WFE and 2 APP Servers) and has log on locally rights as well on security policy. On the SQL DB it has dbo permissions on the Sync, Profile and Social DB’s.
  Farm Service account – spservice-s is a managed farm account that is used to run the various services of the farm (used during the config wizard part).
  From within the Admin Control Panel I have verified the managed accounts and it is indeed spadmin2013 which owns the User Profile Sync Service (not the application itself). When I try to start the service it tries to do that for 5-10 minutes and then fails
  and goes back to stop and I do not see any error. I have created a custom service application with new database that runs on spadmin2013/spfarm/ldap accounts etc. I can see from the Windows services – FIM and FIMSync service try to start using the spadmin2013
  and then go back to disabled. I have also tried giving the spadmin2013 rights to replicate the AD as few blogs suggested that. I am not sure where this is going wrong or what is missing. I had successfully got this to work and still can get it to work on my
  first SP2013 server which is a standalone – running SQL, SP app and WFE on the same box.
  In fact I also tried to activate this service first before I joined my 3 other servers to the farm and had no luck. I am kinda lost here as to what is going on! 

  Right. i ran a new log as suggested. I have also cleared the config cache and created a Powershell profile as suggested in this link - http://blogs.msdn.com/b/bryanbolling/archive/2014/01/02/unable-to-start-user-profile-synchronization-service.aspx
  I checked the ULS Logs and i can see the below error -
  ILM Configuration: Validating account.
  ILM Configuration: Validating the system groups
  ILM Configuration: Setting up WMI
  ILM Configuration: Setting required permissions
  ILM Configuration: Create install config file
  ILM Configuration: Update source project
  ILM Configuration: Changing service account credentials
  ILM Configuration: Setting policy for service account
  Updating SPPersistedObject UserProfileApplication Name=User Profile Sync Service. Version: 63903 Ensure: False, HashCode: 55647834, Id: ef1ec55c-aa15-4cb7-a9fe-498382a88b4e, Stack:
  at Microsoft.Office.Server.Administration.UserProfileApplication.Update()
  at Microsoft.Office.Server.Administration.UserProfileApplication.SetupSynchronizationService(ProfileSynchronizationServiceInstance profileSyncInstance)
  at Microsoft.Office.Server.Administration.ProfileSynchronizationSetupJob.Execute(SPJobState state)
  at Microsoft.SharePoint.Administration.SPTimerJobInvokeInternal.Invoke(SPJobDefinition jd, Guid targetInstanceId, Boolean isTimerService, Int32& result)
  at Microsoft.SharePoint.Administration.SPTimerJobInvoke.Invoke(TimerJobExecuteData& data, Int32& result)
  SQL connection time: 131.92704 for Data Source=SPSQLAGL;Initial Catalog="Sync DB";Integrated Security=True;Enlist=False;Pooling=True;Min Pool Size=0;Max Pool Size=100;Connect Timeout=15;Application Name="SharePoint[OWSTIMER][1][Sync DB]"
  ILM Configuration: Configuring database
  ILM Configuration: Error 'ERR_CONFIG_DB'
  UserProfileApplication.SynchronizeMIIS: Failed to configure MIIS post database, will attempt during next rerun. Exception: System.Configuration.ConfigurationErrorsException: ERR_CONFIG_DB
  at Microsoft.Office.Server.UserProfiles.Synchronization.ILMPostSetupConfiguration.ValidateConfigurationResult(UInt32 result)
  at Microsoft.Office.Server.UserProfiles.Synchronization.ILMPostSetupConfiguration.ConfigureMiisStage2()
  at Microsoft.Office.Server.Administration.UserProfileApplication.SetupSynchronizationService(ProfileSynchronizationServiceInstance profileSyncInstance).
  UserProfileApplication.SynchronizeMIIS: End setup for 'User Profile Sync Service'.
  Updating SPPersistedObject ProfileSynchronizationSetupJob Name=ProfileSynchronizationSetupJob. Version: 63899 Ensure: False, HashCode: 36296732, Id: 7aeb377f-8bd1-453d-b6be-6a373eaf350d, Stack:
  at Microsoft.SharePoint.Administration.SPJobDefinition.Update()
  at Microsoft.Office.Server.Administration.ProfileSynchronizationSetupJob.Execute(SPJobState state)
  at Microsoft.SharePoint.Administration.SPTimerJobInvokeInternal.Invoke(SPJobDefinition jd, Guid targetInstanceId, Boolean isTimerService, Int32& result)
  at Microsoft.SharePoint.Administration.SPTimerJobInvoke.Invoke(TimerJobExecuteData& data, Int32& result)
  Leaving Monitored Scope (Timer Job ProfileSynchronizationSetupJob). Execution Time=6041.65717333333
  Name=Timer Job User Profile Sync Service_ProfileSynchronizationJob
  Updating SPPersistedObject ProfileSynchronizationSetupJob Name=ProfileSynchronizationSetupJob. Version: -1 Ensure: False, HashCode: 13918585, Id: 21e01df1-8772-487d-bd56-f699b3912bda, Stack:
  at Microsoft.SharePoint.Administration.SPJobDefinition.Update()
  at Microsoft.Office.Server.Administration.UserProfileApplication.StartSynchronizationServiceSetupTimer(String strSyncMachineAddress)
  at Microsoft.Office.Server.Administration.UserProfileApplication.SynchronizeMIIS()
  at Microsoft.Office.Server.Administration.ILMProfileSynchronizationJob.Execute()
  at Microsoft.Office.Server.Administration.UserProfileApplicationJob.Execute(SPJobState jobState)
  at Microsoft.SharePoint.Administration.SPTimerJobInvokeInternal.Invoke(SPJobDefinition jd, Guid targetInstanceId, Boolean isTimerService, Int32& result)
  at Microsoft.SharePoint.Administration.SPTimerJobInvoke.Invoke(TimerJobExecuteData& data, Int32& result)
  Updating SPPersistedObject ProfileSynchronizationSetupJob Name=ProfileSynchronizationSetupJob. Version: 63913 Ensure: False, HashCode: 13918585, Id: 21e01df1-8772-487d-bd56-f699b3912bda, Stack:
  at Microsoft.SharePoint.Administration.SPJobDefinition.Update()
  at Microsoft.Office.Server.Administration.UserProfileApplication.StartSynchronizationServiceSetupTimer(String strSyncMachineAddress)
  at Microsoft.Office.Server.Administration.UserProfileApplication.SynchronizeMIIS()
  at Microsoft.Office.Server.Administration.ILMProfileSynchronizationJob.Execute()
  at Microsoft.Office.Server.Administration.UserProfileApplicationJob.Execute(SPJobState jobState)
  at Microsoft.SharePoint.Administration.SPTimerJobInvokeInternal.Invoke(SPJobDefinition jd, Guid targetInstanceId, Boolean isTimerService, Int32& result)
  at Microsoft.SharePoint.Administration.SPTimerJobInvoke.Invoke(TimerJobExecuteData& data, Int32& result)
  I have verified the spadmin2013 does have dbo permissions and also is part of security & sysadmin in sql server. I run SQL 2012 with SP1

• Push profile with profile manager to two users on one mac

  I have been testing profile manager today. Very interesting setup.
  Unfortunately I ran into one problem:
  I have a profile for a group setup as a push profile.
  Two users of the group use the same mac.
  So I logged in as the first user, browsed to .../mydevices and installed the trust profile. Then I clicked enroll to enroll the Mac.
  Then I did the same with the second user on the same Mac.
  So far so good.
  When I log in again as the first user, the Mac isn't enrolled anymore. Strange but I went on.
  I made a change to the profile with Profile Manager on the server. I saved the settings and checked Active Tasks to see wether it pushed the settings.
  Displayed: Push Settings 1 of 2 in progress; 1 succeeded. first user sending, second user succeeded.
  Then I enrolled the mac with the first user again. Then the task completes completely. But when I make a change to the profile again and push the new profile, the same problem occurs: the user last enrolled the mac gets the updated profile. The other user will not get the update.
  Hopefully this wil be fixed in a next update.
  Anyone got this working the right way / workaround?

  Do not use a network or local user to "enroll" a device. Create a Enrolment profile in profile manager I have found that the way you are doing this will work fine. However I am having the problem that now that I have a OD with 350+ users with 100+ devices profile manager cannot keep up and cannot push the settings fast enough or just hangs on user profiles but not device profiles......

• Warning! task_eval_init(): unable to set User/Group baseDN

  Hi,
  I have installed Directory server on Unix platform.
  Installation went successful. While doing the installation, I have given the userid to run the server as "admxxx" and group as "www".
  After the installation, the server started properly but with a warning message that "warning: daemon is running as super-user". And I was able to open the console and do whatever I wanted.
  We have created 3 more directory server instances and we imported an LDIF file into one of the instances successfully.
  Now the problem is, whenever we start the admin server, we are getting the following message.
  bash-2.03# ./start-admin
  Info: Cache expiration set to 600 seconds
  Warning! task_eval_init(): unable to set User/Group baseDN
  Netscape-Administrator/4.2 B2002.057.2313
  startup: listening to http://servername, port 6061 as root
  warning: daemon is running as super-user
  Can any one tell why I am getting the message Warning! task_eval_init(): unable to set User/Group baseDN ?
  This is very urgent. We have configured this LDAP to SiteMinder server.
  Thanks in Advance,
  Murthy

  zhangping,
  I don't recognize your error. But are you using ldap for logging into SunMC ? This is not possible.

• Unable to assign User groups in Enterprise Portal

  Hi,
  We are using EP 7.0 with MS SQL on Windows 2003 Server. Recently we have changed the UME to IDES EHP4 System. We can able to create users in the backend system and can read but when we try to assign any groups to the user we are getting the following error,
  User attributes successfully modified
    You are not authorized to assign one or more entities. Perform a new assigned entities search to see the correct status.
  I am the administrator with full rights. Please help us, what is need to be done to resolve the issue.
  Thanks,
  Ajay.

  Hi,
  @Sukrut-
  We have already assigned the SAP_BC_JSF_COMMUNICATION role to the communication user but still getting the issue with group assignment. please find the default trace below.
  #1.5 #005056835CB600750000002100000B740004ABB31AFC209F#1314685646778#com.sap.security.core.wd.assignusermapping.AssignUserMappingComp#sap.com/tcwddispwda#com.sap.security.core.wd.assignusermapping.AssignUserMappingComp#Ajay#5914##EP70ULQ_E7Q_2951550#Ajay#b8bdc571d2d011e08434005056835cb6#SAPEngine_Application_Thread[impl:3]_16##0#0#Error##Java###An unexpected error occurred during retrieval of all backend systems available for user mapping for principal ''''.
  [EXCEPTION]
  #2#USER.R3_DATASOURCE.Ajay#com.sap.security.core.wd.exception.UmeUiException: java.lang.NoSuchMethodError
       at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.handleThrowable(UmeUiFactoryCompInterface.java:2618)
       at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.getUserMappingSystems(UmeUiFactoryCompInterface.java:1637)
       at com.sap.security.core.wd.umeuifactory.wdp.InternalUmeUiFactoryCompInterface.getUserMappingSystems(InternalUmeUiFactoryCompInterface.java:575)
       at com.sap.security.core.wd.umeuifactory.wdp.InternalUmeUiFactoryCompInterface$External.getUserMappingSystems(InternalUmeUiFactoryCompInterface.java:912)
       at com.sap.security.core.wd.assignusermapping.AssignUserMappingComp.refreshSystems(AssignUserMappingComp.java:338)
       at com.sap.security.core.wd.assignusermapping.AssignUserMappingComp.setPrincipal(AssignUserMappingComp.java:287)
       at com.sap.security.core.wd.assignusermapping.wdp.InternalAssignUserMappingComp.setPrincipal(InternalAssignUserMappingComp.java:220)
       at com.sap.security.core.wd.assignusermapping.AssignUserMappingCompInterface.resetComponent(AssignUserMappingCompInterface.java:139)
       at com.sap.security.core.wd.assignusermapping.wdp.InternalAssignUserMappingCompInterface.resetComponent(InternalAssignUserMappingCompInterface.java:136)
       at com.sap.security.core.wd.assignusermapping.wdp.InternalAssignUserMappingCompInterface$External.resetComponent(InternalAssignUserMappingCompInterface.java:230)
       at com.sap.security.core.wd.maintainuser.ReadonlyDetailInterfaceView.onPlugDefault(ReadonlyDetailInterfaceView.java:169)
       at com.sap.security.core.wd.maintainuser.wdp.InternalReadonlyDetailInterfaceView.wdInvokeEventHandler(InternalReadonlyDetailInterfaceView.java:105)
       at com.sap.tc.webdynpro.progmodel.generation.DelegatingInterfaceView.invokeEventHandler(DelegatingInterfaceView.java:85)
       [Removed few extra lines to shorten the log -
  Ajay]
       at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
       at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
       at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
       at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
       at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
  Caused by: java.lang.Exception: classname:[java.lang.NoSuchMethodError]message:[com.sap.security.core.umap.imp.UserMappingUtils.isReferenceSystem(Ljava/lang/String;)Z]
       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
       at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
       at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
       at java.lang.reflect.Constructor.newInstance(Constructor.java:282)
       at com.sap.security.core.jmx.impl.JmxServer.handleThrowable(JmxServer.java:581)
       at com.sap.security.core.jmx.impl.JmxServer.getUserMappingSystems(JmxServer.java:420)
       [Removed few extra lines to shorten the log -
  Ajay]
       at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.getUserMappingSystems(JmxModelCompInterface.java:768)
       at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface.getUserMappingSystems(InternalJmxModelCompInterface.java:497)
       at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface$External.getUserMappingSystems(InternalJmxModelCompInterface.java:768)
       at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.getUserMappingSystems(UmeUiFactoryCompInterface.java:1635)
       ... 56 more
  Caused by: java.lang.NoSuchMethodError: com.sap.security.core.umap.imp.UserMappingUtils.isReferenceSystem(Ljava/lang/String;)Z
       at com.sap.security.core.jmx.impl.JmxUserMappingHelper.getUserMappingSystems(JmxUserMappingHelper.java:123)
       at com.sap.security.core.jmx.impl.JmxServer.getUserMappingSystems(JmxServer.java:417)
       ... 77 more
  @SujiRam-
  We can see the group in portal and we are getting same issue for all the portal groups not particularly for one grp assignment. We are not using LDAP for EP.
  Please suggest-
  Thanks,
  Ajay.