User access right / permission function

Similar Messages

• Drilldown based on user access rights

  Hi
  I have a bar chart which displays monthly sales for Region A, Region B.
  I would like to know if it is possible to restrict drilldown based on user access rights (I'll get this from database and i know if the user has access or not when clicking, but i don't know how to disable the drill down or stop drilling down when user has no access rights)
  Thanks
  yesvee
  Edited by: yesvee123 on Jun 2, 2010 2:03 PM

  Hello Yesvee,
  Database security does not exist in CR Designer, only in Trusted Authentication but it doesn't support Row security. You'll have to use one of our other Products to get this feature/functionality.
  Call Sales for more info on which Products would be best suited for your needs and pricing.
  Thank you
  Don

• Problems Managing User Access Rights for Web Gallery

  Has anyone else had issues changing the user access rights for a web gallery? It seems like the access is everyone or no one. Are the user rights handled per event in the gallery? I had issues adding events to the user's view/download rights in the publish settings.
  Also, can these settings only be set when an event is first published? Attempting to change the user access rights after the event is published seems to require a re-upload of the images.
  Any thoughts?

  Problem solved.
  I had to put the following lines in the specified "0000_any_80.my.website.conf" file:
          <Directory "/Library/WebServer/subdomain.domain">
                  Options All +MultiViews -ExecCGI -Indexes -Includes
                  AllowOverride None
                  # For Password protection
                  AuthType Digest
                  AuthName "Password Protection"
                  require valid-user
                  <IfModule mod_dav.c>
                          DAV Off
                  </IfModule>
          </Directory>

• Run a report of user access rights ?

  Hello, I would like to run a report from Active Directory (windows server 2012) that summarises the access rights that my various users have.
  Is there a way of doing this ?
  Thank you for any information.

  Greetings!
  Since other experts already mentioned about the OU ACLs, you can refer to this blog by Ashley in order to find out where your groups are used in shared folders:
  PowerShell to Find Where Your Active Directory Groups Are Used On File Shares
  Regards.
  Mahdi Tehrani   |  
    |  
  www.mahditehrani.ir
  Please click on Propose As Answer or to mark this post as
  and helpful for other people.
  This posting is provided AS-IS with no warranties, and confers no rights.
  How to query members of 'Local Administrators' group in all computers?

• OIM Group Permissions(OIM User access rights)

  Is it possible to set the permissions for an OIM group (ie AD Admins) to have access to Enable, Disable, and Revoke the resources on the Resource Profile page for a user– without giving them write access to the User Detail page.
  And secondly, could it be restricted enough to only allow them to do those actions on a specific resource (ie AD User) and not other resources (ie OID, etc).
  Please let me know asap if have any idea..
  Thanks..

  My suggestion would be request based Enable/Disable/Revoke. You can code an approval task to validate submission of the request based on a group membership and either allow the process to continue or reject the request. Once you give someone access to manage users and access to the menu item, they will have access to all the drop downs for that user. You will need to test the permissions. You can give the group update writes to specific objects, and only read only to others and see if this meets your requirements.
  -Kevin

• Audit log of the User access and permissions

  Hi All,
  We need to have the Audit trail of the user access and permission. Meaning Changes to user access rights will be logged.
  This should include:
  Current Access Rights (including Date the access was given),
  Group membership (including Date the access was given),
  Previous Access Rights (including Date the access was given and revoked).
  Can we reuse any out of the box functionality of CQ. Does anybody having any pointer to this?
  Thanks,
  Debasis

  Hi PChamoun,
  At the outset thanks a lot for the clue. I am very new to CQ. Could you please guide me like, what are the API required to track the rep:policy node changes. Even if workflow will be started after any change to rep:policy but how I will be able to get the information of what change happened.
  Thanks,
  Debasis

• BAM tab access rights

  Hi,
  I’m currently working on user access rights for tab groups in BAM.
  If the tabs within BAM each access different reports located in different directories, then by controlling the user access rights on those directories it is possible to control which tabs (ie. directories) the users will be able to view.
  However, in my design there is a single report with an input filter parameter. Each tab opens up the same report by applying a different input filter parameter. Instead of replicating the same report multiple times in separate directories for each of the 12 different input parameters, is there any way I can control access to the different tabs by different users?
  Any comments/suggestions would be greatly appreciated.
  Thanks in anticipation,
  Shiraz

  One way we do is that, when launching the forms application, it first logs on as a dumb user login/login, that only has the rights of executing some stored functions in a package that return the name & password of a user that has all the needed privileges. After the making the calls to those functions, the form has the name & password of the user that will be used to logon and perform what's needed.
  You may say that this way one may easily find-out the name & password of that "priviledged user". Still, those functions are not returning "in clear" the name & password, but they have to be combined in a way one would not easily guess. Moreover, the "login" user has no other priviledges except executing the respective package, no selects, no other things at all.
  null

• Message Monitor - Access rights

  Hello,
  we want to give some user access rights to look into Message Monitor to track the transfer of IDOCs.
  Basically we have the role Role_SAPMEINT which lets us take look into the queue monitor but not the message monitor.
  By which UME roles or UME actions is this part is accssible for the user.
  I don't want to give the user SAP_XMII_Admin role.
  Regards,
  Kai

  It looks like there are some Actions for the Message Listener Monitor listed in the MII help.
  Actions for Permissions - SAP Manufacturing Integration and Intelligence - SAP Library

• Checking user access status

  I'm writing an installer with InstallAnywhere. When the installation is made on a Windows machine we need to set a System Variable, system-wide if possible. How can I check the user's access rights in java? Is there any way to tell if he has full access on his system (ie, logged in as administrator) or not?
  I need to be able to do this for every Win32 system.
  Thanks,
  Walter Gildersleeve
  Productivity Engineering, GmbH
  Freiburg, Germany

  this code return all system properties U can access
  Properties p = System.getProperties();
  but I didn't find any information about user access right... :(

• Tab access rights

  Hi all,
  Is there any way to get programmatically the user access rights
  for a determined tab in the page ?
  Thanks,
  Rafael.

  Hello Stephan,
  I believe you may have placed this in the incorrect forum.
  This forum is for the use of the BusinessObjects products SDKs only.
  You may need to search through the other forums to find out where the GRC SDK is discussed.
  Jason

• User has appropriate permission, still not able to access one of the sharepoint site applications.

  Hi,
  I have tried all solutions available on internet regarding this problem but none seems to work.
  As per one solution I added the user in sharepoint site collection administrator group still no luck!
  As per another solution  I tried to run “User Profile Service Application Proxy – User Profile to SharePoint Full Synchronization”
  “User Profile Service Application Proxy – User Profile to SharePoint Quick Synchronization”
  but they dont run for some reason. Both these jobs are scheduled to run everyday but last time they ran was some date in 2011. When I click on Run Now nothing happens.
  I deleted all cache, forms password history everything.  Added the site in trusted sites and all. No luck!
  User also tried to access the site by logging onto another system but still same issue.
  This user recently joined alongwith a few more people. All of them are able to access the site except this particular user. So, a web part or unpublished page cant be the reason, right?
  This user is only able to access the home page which is say http://<siteurl:1234> application while the site which this user is not able to access is
  http://<siteurl:2345>.
  I even tried to give access through sharepoint designer but no luck! Please help!
  PS: This may not be relevant but still I'm sharing. Earlier I used to add users in manage user profiles - new profile. But now as soon as the user is added into active directory there profile is getting created automatically. This might be happening due to
  active directory and user profile sync but the question is how? Because I dont remember configuring this. And it was not configured earlier too.

  Hi,
  According to your description, my understanding is that only one user cannot access the site even though he has the right permission.
  I recommend to verify the things below:
  Check the permission of the user in the site to see if the permission is right.
  Is http://<siteurl:2345> a new site collection ? Can the user access other pages except the home page in
  http://<siteurl:1234>?
  Grant needed permission to the user in the web application to see if the issue still occurs.
  Delete the user and re-add the user in AD to see if the issue still occurs.
  Check the ULS log for detailed error message.
  Best regards.
  Thanks
  Victoria Xia
  TechNet Community Support

• Allow dashboard to be accessed by users with no access rights to the plateform

  There are some users which would like to access a specific dashboard without having access rights to the platform, and we are searching for a solution. What we want is a scheduled job that would update the dashboard data or make the dashboard accessible in an offline mode, but it seems that these solutions are not applicabale.
  If you have implemented a solution before or find a work-around, please let me know.
  Regards.

  Hi Sawaf,
  This can be done using "Widgets" which is one of the BO BI Platform client Tools.
  1. You need to create a separate user id for the user and provide view access rights only for the required dashboard that has been saved in BI Launchpad.
  2. User need to install widgets on his local machine, create a new host for the required BI Platform by entering the Server IP address and Login Credentials as below.
  3. After entering all the details, it shows a message that "server logged in successfully". Right click on the widgets icon from the taskbar, click on document list explorer. It shows the documents in the BI Platform, select the dashboard and double click on it. after the dashboard is opened in the Widgets window drag it onto the user desktop and run it.
  4. In this way user can view dashboards or reports on his desktop without any access to BI platform.They can keep the file opened on their desktop all the day also.. Session does not expire in this method.
  5. If you want data to be refreshed for every 1 hour or so.. keep a query refresh button in the dashboard, select all the queries in it and select a trigger cell. You can write a excel function in that trigger cell so that the cell value changes every 1 hour (OR) select refresh every 1 hour option from the bex query properties in the dashboard.

• Job scheduling failed because the user has no permission to access this rep

  Hi. I've OBIP 10.1.3.4.1.
  When I launch a print with the scheduler I see this error:
  oracle.apps.xdo.servlet.scheduler.ProcessingException: Job scheduling failed because the user has no permission to access this report. [REPORT_URL]=[folderreport/report/report.xdo], [USERNAME]=[administrator]
       at oracle.apps.xdo.servlet.ui.scheduler.SchedulerServlet.scheduleJob(SchedulerServlet.java:1140)
       at oracle.apps.xdo.servlet.ui.scheduler.SchedulerServlet.doPost(SchedulerServlet.java:295)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
       at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64)
       at oracle.apps.xdo.servlet.security.SecurityFilter.doFilter(SecurityFilter.java:100)
       at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:621)
       at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:368)
       at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:866)
       at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:448)
       at com.evermind.server.http.HttpRequestHandler.serveOneRequest(HttpRequestHandler.java:216)
       at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:117)
       at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:110)
       at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
       at oracle.oc4j.network.ServerSocketAcceptHandler.procClientSocket(ServerSocketAcceptHandler.java:239)
       at oracle.oc4j.network.ServerSocketAcceptHandler.access$700(ServerSocketAcceptHandler.java:34)
       at oracle.oc4j.network.ServerSocketAcceptHandler$AcceptHandlerHorse.run(ServerSocketAcceptHandler.java:880)
       at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
       at java.lang.Thread.run(Thread.java:595)
  In this env. I've a LDAP Security Model and all the report and all the users work.

  Please check whether you have assigned below responsibility to the user trying to schedule report.
  XMLP_SCHEDULER

• How to define a new user in Enterprise manager with Specific access rights?

  Hi,
  I want to create a new user in OEMS 11g who should be able to access only the scheduler jobs section.
  How can this be acheived?

  You can create new administrators via the Setup --> Administrators page
  You can grant certain access rights to targets, you can not however grant priv to only access the job system
  Take a look at http://download.oracle.com/docs/cd/E11857_01/em.111/e14586/security3.htm#sthref235
  Regards
  Rob
  http://oemgc.wordpress.com

• Trying to add a user to a Group thru JNDI. Insuffficient Access Rights

  I am trying to add a user to a group using JNDI with,
  DirContext.modifyAttributes()
  I have set up the tree structure outside the default cn=Users setup and defined the Group as auxiliary class.
  I haven't set up any Access Controls. But it fails with "Ldap Error code 50. Insufficient Access Rights".
  If I try to add the same user using the uniquemember attribute to the group I am interested in, it works fine in Directory Manager and Generic Ldap browser. I even tried setting up the JNDI user credentials to "orcladmin" still doesn't work. Any idea??

  Maybe the example code from OID developers guide gives an idea
  http://download-west.oracle.com/docs/cd/A97329_03/manage.902/a95193/smplcode.htm#637267
  --Olaf