User addition in planner group

Similar Messages

• Unable to Access Data Form with Users Provisioned as 'Planner'

  Hello,
  I am currently experiencing an issue that I can't seem to resolve. I was hoping someone else might have some insight and/or have come across this issue.
  I created two data forms. Users have been assigned permissions to the dimensions included in the data form. I have also assigned users access to the data form. The model is a single currency model.
  Upon logging into the application, the user is unable to open the data form unless he/she is provisioned as an 'Administrator'. Provisioning the user as a 'Planner' or 'Interactive User' does not allow the user to open the data form. The following message appears:
  *"Security and/or filtering has resulted in a required dimension not being represented on this data form."*
  My data form uses the following dimensions:
  POV: ELEMENT
  PAGE: SCENARIO, YEAR, VERSION, ENTITY
  ROWS: ACCOUNT
  COLUMNS: PERIOD
  We are currently implementing Hyperion Planning 11.1.2.0. The operating system is Windows Server 2008 64-bit R2.
  Any advice/suggestions on how to resolve this would be greatly appreciated. Thank you.
  Corey

  I went ahead a created a data form that just used level 0 members and confirmed that the user had access to the members defined in the form. Still no luck.
  I also checked to make sure the filters existed in Essbase. Here is what I found in Essbase:
  Access: None
  Member Specification: @IDES("Account"),@IDES("Scenario"),@IDES("Version"),@IDES("Entity"),@IDES("NTTA_ELEMENT")
  I have no issues accessing the data through the Essbase Add-in.
  I did notice some additional items in my Planning setup:
  1. Task>Manage Process - Sub-Status states 'Failed' when I attempt to validate
  2. Task>Manage Process - Status changes from 'Not Started' to 'Under Review' when I start the cycle.
  3. Dimension Security - Users are attached to a group that has write access at the Descendent(Inclusive) level.
  4. In the Account, Department, Scenario and Version dimensions I also setup the user to have write access at the member level.
  As for my earlier post with the data forms, that was just my way of showing the dimensions used. I do have two data forms, 1) with top level and descendants/children and 2) with level 0 members only.
  I checked the logs and there isn't really much info there. I have a case open with Oracle and a webex scheduled for tomorrow.
  Thoughts?
  Thanks
  Corey

• Adding a domain user to Local Admin Groups using MDT 2012

  I don't know if this will help anyone, but it did me after weeks of searching.  If you are trying to add a domain user or domain groups to the local administrators group using MDT, simply go to the cs.ini and add "SkipAdminAccounts=No". 
  But the administrators accounts page will only appear if you choose to join a domain. 

  Correct, if you were to go into the %DeployRoot%\Scripts\DeployWiz_Definition_ENU.xml file you would see the entry for the DeployWiz_AdminAccounts.xml page as follows:
  <Pane id="AdministratorAccounts" reference="DeployWiz_AdminAccounts.xml">
  <Condition><![CDATA[ UCase(Property("SkipAdminAccounts")) = "NO" and UCase(Property("DeploymentType"))<>"REPLACE" and Property("DeploymentType")<>"CUSTOM" and Property("JoinDomain") <> "" ]]></Condition>
  </Pane>
  Most Wizard Pages are displayed by default, and you can turn them off by using the SkipXxxXxxxxx Page variable to hide them during wizard execution. This page is different, since it was added for MDT 2012, the MDT team decided to leave it *OFF* by default,
  instead you must explicitly turn off the SkipAdminAccounts variable by setting it to "NO".
  Additionally, you would not need to display this page if you were running a Refresh or a Custom Task Sequence.
  Finally, this page does not actually *create* accounts, instead it just adds pre-existing user accounts and adds them to the local Administrators group. This scenario is only valid when you are joining the machine to a domain, so you must Join to the Domain.
  If you are interested in adding other local users to the Administrators Group, you should write a script to create the account(s) and add them to the local group. Windows 8.1 has some *gotchas* that have to do with Microsoft Accounts, but that's a different
  Story :^).
  Keith Garner - keithga.wordpress.com

• Planner group field in Maintenance order

  Hi,
  When we create a General Maintenance Order, the planner group from Equipment/Functional Location, value, will automatically appear in the Order.
  But in Refurbishment Order, which is for material, the planner group field do not come automatically.
  Is there any option to maintain the planner group field in the Material master, so that, this can appear automatically in the Refurbishment order.
  Kindly suggest.
  Raja.

  Hi Kutti Raja,
  The Material Master route you are looking for does not look feasible,as there is no relation between Planner Group and Material .
  If your Refurbishment Order is triggered through a Notification (M4), then Planner Group automatically flows to Order.
  The other alternative can be
  1. Create a Z-Table having Material vs Planner Group.
  2, Use the User-Exit  IWO10018  to have default planner group INGPR value.
  This works as I have already tested while replying to a discussion. Please go through this.work order completed by
  and go through my reply having 6 steps. You need to work in the similar lines.
  Take help of an ABAPer.
  Jogeswara Rao K

• Planner group authorization in order

  Hi,
  i am planning to give the chnage authorization of maintenance orders and notifications on the basis of planner group. The planner group is maintained in equipment master data and copied to order and notification upon creation. Now the problem i am facing is that i created one role for change order and in that i used the authorization object I_INGRP and maintain planner group values and t code: IW32. now when user is changing the order the authorization is coming in to picture but during order creation also the authorization check is there. I dont want the authorization check at order creation level but only at order change level. That why i only put t code IW32 in role. Can anyone tell me why the system is checking authorization at creation level and how to avoid this.

  System will check Planner group authorisation during work order creation, See [simulation|http://www.scribd.com/doc/24194024/authorisation-issue-check].
  As i understood, the planner group XXX need to change the workorder created by YYY for the equipment planner group XXX.
  or Create custom auth object and enhance the code to check the restriction
  -S.N

• Controlling same Notification Types against few Planner groups

  Dear Experts,
  We have four groups of Maintenance Team (Mec, Ele, Inst & Civ)  which are controlled against four roles to create same Notification types. The control factor is planner group which are linked against their required role and it is working fine to create notification (IW21) for their specific group.
  The problem which we are facing is, change mode of Notification,  Mech planner group team can change the details of Notification in Elec group as
  same Notification types are used by 4 groups. Is there any way to restrict for the change authorization (IW22) in Notification as four teams are following four differernt roles.
  Regards,
  Sahu

  Ajaya,
  Check the values in Authorization Object I_QMEL. (PFCG tcode of the respective Role) See the picture below. Assume this is your role for Civil Notification type (CE). It should look like this.
  Also, try by removing the values in TCD field in other authObjects of this Role.
  One more possibility is
  Some Role other than this specific Role is enabling the user for IW22. This role might have been assigned to all these 3 users. You need to trace this and remove or modify the role.
  This problem is a typical one often seen to be associated with AuthObjects, This can be managed by investigation.
  A last resort method can be to manage this through user-exit QQMA0014. This is possible.
  KJogeswaraRao

• Default Planner Group on Service Order

  Can anyone tell me if it is possible to defualt the planner group on an order based on the oder type?

  The effect of the previously mentioned customizing is that when you press the matchode, the system will only suggest the planner group customized.... I mind, what you need is a restriciting use of the planner group posibilities. The idea off the standar procedures is that the planner could use more than one order type (and that the order could be use for varios GP).So, i'm afraid that you'll have to use some user exit, or perhaps an autorithy object...
  Hope this help
  Ezequiel

• User belonging to multiple groups

  Hi,
  If a user belongs to multiple workgroups, Podcast capture should ask him in wich blog he wants to publish its sequence... but it doesn't seem to work.
  So my question is : how to deal with that ?
  Thanks for your help,
  Nicolas

  Hi
  I know only 2 ways to add some dynamic: posting to user's blog, which supposes to consider that there is only one user who is able to post, otherwise to duplicate workflows and change the target group in it ($$Group Short Name$$ replaced by custom properties or if posted through webUI defined by new field, but it's reliability depends of the human factor..).
  In addition, i may ask you what do you mean by "it doesn't seem to work"..? Is Pc Capture supposed to work this way and ask at any moment to which group's blog the podcast needs to be sent when a user belongs to multiple groups ? That would be a terrific news, but i guess they would have announced it..
  ju
  Message was edited by: JulienC

• Adding users in Local Administrators Group using GP Restricted Group

  Hi Experts.
  I have approx 200 servers. There are user1, user2 and user3 which I have added in
  Local Administrators Group using GP Restricted Group in all 200 servers. This works fine. In Add Group option I added "Administrator" and Added user1, user2 and user3 in "Members of this Group". Now all 3 users are reflected as a Local
  Administrators member.
  Now there is a need that user 4 should be in Local Administrators Group using GP Restricted Group for certain servers only. Lets say 50.
  In Add Group option I added "Administrator" and Added user4 in "Members of this Group". BUT it doesn't work.
  Any idea?
  Regards Suman B. Singh

  Hi,
  How is it going? I agree with Martin. To do this, we can configure the setting in two different GPOs. For instance, in GPO1, we add user1, user2, and user3 to the local admin group; in GPO2, we add user1, user2, user3, and user4 to the local admin group;
  and then we can use Security Filtering to apply the specific GPOs to specific computers.
  Regarding security filtering, the following article can be referred to for more information.
  Security filtering using GPMC
  https://technet.microsoft.com/en-us/library/cc781988(v=ws.10).aspx
  Filter Using Security Groups
  https://technet.microsoft.com/en-us/library/cc752992.aspx
  Besides, in addition to Restricted Groups, we can also use Group Policy Preferences Local Users and Groups to do this, in which way we can configure two Local Group items in one GPO and utilize Item-Level Targeting to apply the specific items to specific
  computers.
  Regarding GPP Local Users and Groups, the following article can be referred to for more information.
  Configure a Local Group Item
  https://technet.microsoft.com/en-us/library/cc732525.aspx
  How to use Group Policy Preferences to Secure Local Administrator Groups
  http://www.grouppolicy.biz/2010/01/how-to-use-group-policy-preferences-to-secure-local-administrator-groups/
  Regarding Item-Level Targeting, the following article can be referred to for more information.
  Preference Item-Level Targeting
  https://msdn.microsoft.com/en-us/library/cc733022.aspx
  Best regards,
  Frank Shen

• Unable to push user profiles to AD groups with Profile Manager since upgrade to Server v3

  Since upgrading our OS X Mac server from 10.8.5 to 10.9.1, and OS X Server app to v3 (now 3.0.2) I have been unable to push or modify user profiles to AD groups (or AD users) using Profile Manager. This was working fine on OS X 10.8.5. Pushing device profiles is still working OK after the upgrade.
  From what I can see from the logs on the client side and server side, it seems related to a problem with the mdm authtoken.
  In the client console I can see this entry:
  27/01/14 14:30:15.844 mdmclient[38557]: *** ERROR *** [Agent:636102071] Unable to proceed with connection to: https://ourserver.ourdomain/devicemanagement/api/device/mdm_connect (com.apple.mdmconfig.mdm) because don't have valid MDM AuthToken
  On the server, in the php.log I can see the corresponding attempt to authenticate:
  1::Jan 27 14:29:50.930 [158] <192.168.28.171> {require_once (mdm_checkin.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - PUT mdm_checkin
  0::Jan 27 14:29:50.931 [158] <192.168.28.171> checkin: 'UserAuthenticate'
  1::Jan 27 14:29:50.936 [158] <192.168.28.171> {Target_for_incoming_request (target.php:209)} Found target NETWORK LS: <User[156]@ourclientmachine>
  0::Jan 27 14:29:50.937 [158] <192.168.28.171> {LabSession_validate_auth_token (mdm_checkin.php:22)} Failed auth for target NETWORK LS: <User[156]@Device[1697]>, incoming_request={
  0::Jan 27 14:29:50.937 [158] <192.168.28.171>   'MessageType'=>'UserAuthenticate',
  0::Jan 27 14:29:50.937 [158] <192.168.28.171>   'UDID'=>'17aff5c5a40f51acbbd78023d0028c80',
  0::Jan 27 14:29:50.937 [158] <192.168.28.171>   'UserID'=>'A5EA25B7-7CCD-4EF4-B240-F23DED275EEC'
  0::Jan 27 14:29:50.937 [158] <192.168.28.171> }
  1::Jan 27 14:29:50.965 [158] <192.168.28.171> {SendFinalOutput (mdm_checkin.php:145)} Sent Final Output (407 bytes)
  1::Jan 27 14:29:50.965 [158] <192.168.28.171> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/mdm/mdm_checkin
  0::Jan 27 14:29:50.965 [158] <192.168.28.171> {SendFinalOutput (mdm_checkin.php:145)} Completed in 34ms | 200 OK [https://ourserver.ourdomain/devicemanagement/api/device/mdm_checkin]
  So I can see there is a failure to authenticate, but don't really know how to troubleshoot this further. Or maybe this is just a bug in the new server app?
  I have tried to remove and re-enroll clients in Profile Manager but no joy there.
  In the client's Keychain I can see an MDM user AuthToken linked to the correct user account.
  Thanks in advance for any help or suggestions

  I just wanted to update my post, as this issue for me is resolved.
  I uninstalled and reinstalled the Server.app on our Mac server, since then I've been able to push profiles to AD Users and Groups. I guess that in my case the Server app got into a bit of a mess when it was upgraded to v3.
  Now the next headache I have is that my AD Groups which are displayed in Profile Manager are not syncing any recent changes. I think I'm probably seeing the same issue as described in this post
  https://discussions.apple.com/message/25420919#25420919

• Analysis report on the basis of Planner group

  In the existing analysis of Planner group using MCI4, is it possible to add Notification type in the drill down.
  I required to do the analysis on the basis of Notification type also. And if it is possible to add Notification type to the Planner grp, my analysis report is get fitted in the Standard report, otherwise I have to prepare the Z-Report.
  Thanks in advance

  Hi,
      Please check this detailed link Modify T-Code MCI4 Report
  I think in ur case while doing statistical set up running programme RIPMS001 is enough ..
  regrds
  pushpa

• How to implement a single user in mutiple AD groups?

  Hi all,
  I need your help in achieving the following requirement.
  1. Security should be applied based on a DeptName from DeptTable For example Department Name= A , Department Name =B, Department Name =C.
  2. Also security should be based on Officer Indicator from EmployeeTable= Yes or No.
  3. Employee Salary information is grouped into EmpFacts in presentation folder. Only a few users who belong to the group which has access to the folder, should be able to see this folder when they login.
  (DeptAOfficerYesEmpFactYesSuper. All the groups which has EmpFactYes are given permissions to EmpFact Folder in presentation Folder)
  4. On top of these all the users are classified into Mega and Super users. Mega users should have read only access to dashboards and Super users should be able to edit the dashboards. ( All the groups which are classified as Super are given access to "Edit Dashboard" in Presentation Catalog )
  NOTE: As we are deploying our rpd in the shared environment we are not supposed to use SESSION VARIABLES.
  TO achieve the above requirement we have created AD groups such that DeptAOfficerYesEmpFactYesSuper , DeptAOfficerNoEmpFactNoSuper and so on. By this method all the permutation and combinations will result in AD groups.
  We know that this approach will lead to severe maintenance issues and hence looking for other alternatives.
  We are now planning to have only DeptA, DeptB, DeptC groups and use them in conjunction with three other groups ( Officer, EmpFact, Super).
  Can we add a single user in all these user groups ?
  Kindly let me know if you need any clairty on this.
  Your help is highly appreciated.
  Edited by: user10682075 on May 11, 2011 7:24 PM

  Yes and no..meaning a user with just 1 group assigned will retrieve less data then a user with multiple groups assigned, so yes, more data to select will affecct your performace (a bit), but no, the use of multiple security groups by itself won't affect performance..
  The use of multiple security groups will reflect in the use of an IN or a subquery in your logical query, OBI will determine the best way in each case and your database (and statistics) will determine the best physical query and therefore query performance.
  M.

• Planner group is not updated in service notification using BAPI

  Hi,
  Planner group is not updated in service notification using BAPI BAPI_ALM_ORDER_MAINTAIN.
  I have written the below code, but planner group is not updated in the service notification.
  Please advice which parameters do i need to pass to update planner group in the service notification.
            wa_methods-refnumber      = '000001'.
            wa_methods-objecttype     = 'PARTNER'.
            wa_methods-method         = 'CREATE'.
            wa_methods-objectkey      = wa_subscr1-aufnr.
            APPEND wa_methods TO i_methods.
            wa_methods-refnumber      = '000002'.
            wa_methods-objecttype     = 'HEADER'.
            wa_methods-method         = 'CREATE'.
            wa_methods-objectkey      = wa_subscr1-aufnr.
            APPEND wa_methods TO i_methods.
            wa_methods-refnumber      = '000000'.
            wa_methods-objecttype     = ' '.
            wa_methods-method         = 'SAVE'.
            APPEND wa_methods TO i_methods.
            REFRESH i_partner.
            CLEAR wa_partner.
            wa_partner-orderid        = wa_subscr1-aufnr.
            wa_partner-partn_role     = 'VW'.
            wa_partner-partn_role_old = ''.
            wa_partner-partner        = wa_subscr1-parnr.
            wa_partner-partner_old    = ''.
            APPEND wa_partner TO i_partner.
            REFRESH i_planrgrp.
            CLEAR wa_planrgrp.
            wa_planrgrp-orderid        = wa_subscr1-aufnr.
            wa_planrgrp-plangroup      = wa_subscr1-ingpr.
            APPEND wa_planrgrp TO i_planrgrp.
            REFRESH i_planrgrp_up.
            CLEAR wa_planrgrp_up.
            wa_planrgrp_up-orderid     = wa_subscr1-aufnr.
            wa_planrgrp_up-plangroup   = 'X'.
            APPEND wa_planrgrp_up TO i_planrgrp_up.
  *----Change order details with Technician name
            CALL FUNCTION 'BAPI_ALM_ORDER_MAINTAIN'
              TABLES
                it_methods   = i_methods
                it_header    = i_planrgrp
              it_header_up = i_planrgrp_up
                it_partner   = i_partner
                return       = i_return.
  Thanks & regards,
  Krishna

  Try this way
  CALL FUNCTION 'BAPI_SERVNOT_CREATE'
  EXPORTING
  * EXTERNAL_NUMBER =
  notif_type = 'S3'
  notifheader = ls_notif_h
  * TASK_DETERMINATION = ' '
  * SENDER =
  * ORDERID =
  IMPORTING
  NOTIFHEADER_EXPORT = ls_notif_e
  TABLES
  * NOTITEM =
  * NOTIFCAUS =
  * NOTIFACTV =
  * NOTIFTASK =
  * NOTIFPARTNR =
  * LONGTEXTS =
  * KEY_RELATIONSHIPS =
  return = lt_return
  * IF lt_return IS INITIAL.                                               " <<< Comment this lie
  read table  lt_return into ls_return with key type = 'E'. " << Change
  if sy-subrc ne 0.                                                             " << Change
  COMMIT WORK AND WAIT.
  write: / ls_notif_e-NOTIF_NO.
  ELSE.
  LOOP AT lt_return INTO ls_return.
  WRITE:/ 'errors'.
  * ls_return.
  ENDLOOP.
  endif.
  a®

• How to retrieve all users in a specific group

  Hi,
  I am using SunOne directory server. Can someone please post a sample code that illustrates how to fetch all the list of users in a particular group.
  1) Let's say I want to find all the users in a group called "marketing". The root context is dc=mycompany,dc=com This group can be anywhere below this root context. Only information I am told is the name of the group - "marketing". How will I get all the users in this group?
  2) For each user that is retrieved from the group marketing, how will I find out the user's DN?
  Thanks for the help,
  - Satish

  Do it like this...
  String searchBase = "ou=marketing";
  StringBuffer filter = new StringBuffer();
  filter.append("(|");
  if (organizationName != null && !organizationName.trim().equals("")) {
       filter.append("(");
       filter.append(ou);
       filter.append("=");
       filter.append("marketing");
       filter.append(")");
  SearchControls constraints = new SearchControls();
  constraints.setSearchScope(SearchControls.SUBTREE_SCOPE);
  constraints.setCountLimit(200); // How many users should be found
  constraints.setTimeLimit(100000); // how much time should this search wait
  // Get a initial context and set it to the ctx object
  ctx.search(searchBase, filter.toString(), constraints);

• Adding and removing current user from one SharePoint group to another with event receiver

  hi friends
  i need to change current user from one SharePoint group to another with list item adding event receiver.
  please help me

  Hi Malli,
  Greetings. Its nt possible
  http://sharepoint.stackexchange.com/questions/42286/event-receivers-on-add-remove-users
  Please remember to click 'Mark as Answer' on the answer if it helps you