User administration reporting for BOE 4.1

Hello,
I'm interested in creating user administration reports within the BOE 4.1 CMC.
The type of reports I'd like to create are:
- list all users, and their status
- list groups users belong to
- list when users changed and who changed them
Are these type of user administration reports available by default, or do they need to be created from the CMC schema?
I have been working with a developer on the reports available through the 'audit' database, but it doesn't appear to capture this information.
Appreciate the help.
Paul

All these are from CMS DB. Not in Audit DB. You can use SDK to build these reports.
You can refer below link for how to extract the information using query builder.
BusinessObjects Query builder queries - Part II

Similar Messages

Sub:find out the user exit report for any tc

Hi,
i want to find out the user exit report for any tc
Thanks,
jayaraj

Hi,
Pls go through it the following coding. It will helps u.
*& Report YMS_USEREXITTEST *
REPORT YMS_USEREXITTEST no standard page heading.
tables : tstc, tadir, modsapt, modact, trdir, tfdir, enlfdir.
tables : tstct.
data : jtab like tadir occurs 0 with header line.
data : field1(30).
data : v_devclass like tadir-devclass.
parameters : p_tcode like tstc-tcode obligatory.
select single * from tstc where tcode eq p_tcode.
if sy-subrc eq 0.
select single * from tadir where pgmid = 'R3TR'
and object = 'PROG'
and obj_name = tstc-pgmna.
move : tadir-devclass to v_devclass.
if sy-subrc ne 0.
select single * from trdir where name = tstc-pgmna.
if trdir-subc eq 'F'.
select single * from tfdir where pname = tstc-pgmna.
select single * from enlfdir where funcname = tfdir-funcname.
select single * from tadir where pgmid = 'R3TR' and object = 'FUGR' and obj_name eq enlfdir-area.
move : tadir-devclass to v_devclass.
endif.
endif.
select * from tadir into table jtab where pgmid = 'R3TR' and object = 'SMOD' and devclass = v_devclass.
select single * from tstct where sprsl eq sy-langu and tcode eq p_tcode.
format color col_positive intensified off.
write:/(19) 'Transaction Code - ',
20(20) p_tcode,
45(50) tstct-ttext.
skip.
if not jtab[] is initial.
write:/(95) sy-uline.
format color col_heading intensified on.
write:/1 sy-vline,
2 'Exit Name',
21 sy-vline ,
22 'Description',
95 sy-vline.
write:/(95) sy-uline.
loop at jtab.
select single * from modsapt where sprsl = sy-langu and name = jtab-obj_name.
format color col_normal intensified off.
write:/1 sy-vline,
2 jtab-obj_name hotspot on,
21 sy-vline ,
22 modsapt-modtext,
95 sy-vline.
endloop.
write:/(95) sy-uline.
describe table jtab.
skip.
format color col_total intensified on.
write:/ 'No of Exits:' , sy-tfill.
else.
format color col_negative intensified on.
write:/(95) 'No User Exit exists'.
endif.
else.
format color col_negative intensified on.
write:/(95) 'Transaction Code Does Not Exist'.
endif.
at line-selection.
get cursor field field1.
check field1(4) eq 'JTAB'.
set parameter id 'MON' field sy-lisel+1(10).
call transaction 'SMOD' and skip first screen.
-End of Program-
Thanks,
Shankar

Issue running a User Activity Report for Lync

When trying to run a User Activity Report, I am receiving the below error
An error occurred during client rendering.
An error has occurred during report processing. (rsProcessingAborted)
Query execution failed for dataset 'CallList'. (rsErrorExecutingCommand)
@_Endtime is not a parameter for procedure CdrP2PSessionList.
Any ideas on this error?

If this is happening after applying CU6 then follow
FIX: Monitoring Server Reports experiences poor performance in Lync Server 2010
http://support.microsoft.com/kb/2703324
if it gives any error when trying to update the backend database (in enterprise pool) then provide the -databasepaths parametr as explained at the end in this article
http://technet.microsoft.com/en-us/library/gg399044.aspx
DatabasePaths
Optional
String
Specifies the drives and folders where data and log files can be stored; for example: -DatabasePaths "D:\Logs","E:\Data".
Gautam.

User login report for given period

Hi All,
We have one query relate to user monitoring. We want to get the detail log or report of users login date,time, logout date time and system ip or system name like for the given period.
Our application environment as
SAP application : R/3 4.7
Database : oracle 9.2.0.8
Thanx in advance
Regards,
Vishnu.

Hi Vishnu,
kindly consider to use the forum search before posting. similar questions like yours have been posted several times already. In oyur search results you may find for instance [this thread|Re: Last three user logon date and time;
b.rgds,
Bernhard

User Authentication Reporting for each AD DS DC

Hi.
I am in the middle of leading a DC Reduction excercise. We are overscoped for the amount of DCs that we have for our users. An upgraded network topology has given us the opportunity to rethink AD and where we have our domain controllers.
We may not need to build out any new hardware. We have several capable VMs in place. I'd like to be able to see how many users authenticate to each DC to see where the heavy and light points are to come up with a new design, but I cant find an easy, centralized
way to do this. We also dont have a good reporting tool at the moment. I see some good Powershell scripts out that capture event 4624 but the scripts are memory intensive. Perfmon does a nice job of real time per-second data but I want to get a collection
of authentication during high traffic times like the morning, or even a full day. Any suggestions? Thanks.

As mentioned, if you have only a 'small' number of domain controllers you might be able to use perfmon and data collector sets.
If you have a larger number then you might want to leverage powershell (it's free!) for example with the
get-counter cmdlet. I would create a simple script that checks the relevant counters on all Doman Controllers and write to a csv in a shared location for centralized access.
http://blogs.technet.com/b/heyscriptingguy/archive/2011/07/28/use-performance-counter-sets-and-powershell-to-ease-baselining.aspx
http://www.powershellmagazine.com/2013/07/19/querying-performance-counters-from-powershell/
There are so many resources available on powershell that you can find a script for collecting performance data and adjust it to your requirements.
As for the event's you can use event forwarding for specific events that are of interest to you.
http://blogs.technet.com/b/wincat/archive/2008/08/11/quick-and-dirty-large-scale-eventing-for-windows.aspx
Again, having a monitoring tool would be great, but even SCOM or other tools leverage windows performance counters, they just do it in a more logical way.
http://mariusene.wordpress.com/

Scheduling WebI reports for Dynamic Prompts

Hi All,
Please find my requirement
Scenario 1:-
I am having 30 Different Process Code ( 10 –OAR; 20 – Credit USA; 40 – New Sales etc.) in our project.
Currently I am developing a single report for each “Process Code”. (Total 30 Reports – Templates and query will be 98% same except for different Process Code).
Let us assume that “End user” will not have BO Access. So all the developed reports will be scheduled and sent to the corresponding end user as BO PDF format.
Our Requirement:-
In near future, we will be getting “New Process Code” in data. So the End User wants report for “New Process Code” also.
Is there a way so that we can automate BO to pass each and every Process Code separately to existing BO report and get multiple instance BO PDF output report (One for each Process Code)?
Please give me some solution to achieve this.
Thanks and Regards,
Tharini

Hi Arijit,
Thank you for your response. Irrespective of the recipients i need to pass dynamic parameters separately to existig BO report and should get multiple BO Pdf output for all recipient.
Currently I am having only 30 values. So as of now I can pass these 30 values separately to BO WebI report and Schedule separately for 30 instances.
What if i get 2 New values (Value 1, Value 2) next week and want to view the BO Pdf reports for these 2 values separately (2 New Reports for Value 1 and Value 2 separately)?
How I can achieve these? Is it possible with publishing? If so, please explain it to me.
Thanks,
Tharini

Historical User Changes Report

I would like to create Historical User Changes Report for all objects. This means that I don't want to fill the value of the field "Object Name" which is required.
It's logic that I should fill this field but there is a saved report named "Historical User Changes Report" in IdM which doesn't have this field filled. If I open this report and just click on the Save button, I get an error.
How does Sun create this report without filling "Object Name" field?

Try Today's Activity Report...
In the Actions select login
In the Report Timeline there's calendar to select the date

To enable the User Administrator option programatically

Is there any API call to enable the User Administrator option for a participant programatically? Currently we can do it using the Process Administrator. Please let me know if we can achieve the same through code.
Thanks & Regards,
Supradeep

Hi Kalyani,
Once you have looked at the resources mentioned in Dennis' post, if you still
require more help, would it be possible for you to provide us with the
additional information requested in his post along with a bit more information
on the "scope
to a spreadsheet file" which you mentioned in your post and perhaps a
brief description of what you are trying to accomplish?
Best regards,
Jordan D
Applications Engineering
National Instruments

Managing Disco Users and reports

Hi,
I am finding it very difficult to manage the increasing discoverer users and reports.
I need to develop a tool or process to report, manage Discoverer active users and reporting for license compliance.
How to review user reports for possible deletion/preservation and final deletion of a user database logon?
How to delete a list of users?
How to preserve any shared reports that are actually used.?
How to clean up and delete their unused reports?
How to report: all active in a year (in last 6 months rolling), top 50, inactive?
any suggestions on how to get started with this?
Visakh

Marcelo,
You can manager users using EUSM (executable) found on the oid/ovd installation. Global/local role has to be created on the database side. All EUS mapping can be done on the OID or OVD side using "eusm". There is a metalink note that gives lots of examples on this. Or you can also use enterprise manager grid control that lets you do the same.
As or OVD vs. OID, I am not aware of any major limitations. just operational limitations. Since OID is a ldap server by itself, you can do a lot of tracing/auditing yourself instead of relying on other LDAP admins (unless you manage other ldap servers also). We are currently implementing oid 11.1.1.2 for EUS and I know of my previous employer who is in the middle of implementing OVD 11g (with sun one directory).
Regards,
Shaji
http://www.linkedin.com/in/shajivps

AnyConnect error " User not authorized for AnyConnect Client access, contact your administrator"

Hi everyone,
it's probably just me but I have tried real hard to get a simple AnyConnect setup working in a lab environment on my ASA 5505 at home, without luck. When I connect with the AnyConnect client I get the error message "User not authorized for AnyConnect Client access, contact your administrator". I have searched for this error and tried some of the few solutions out there, but to no avail. I also updated the ASA from 8.4.4(1) to 9.1(1) and ASDM from 6.4(9) to 7.1(1) but still the same problem. The setup of the ASA is straight forward, directly connected to the Internet with a 10.0.1.0 / 24 subnet on the inside and an address pool of 10.0.2.0 / 24 to assign to the VPN clients. Please note that due to ISP restrictions, I'm using port 44455 instead of 443. I had AnyConnect working with the SSL portal, but IKEv2 IPsec is giving me a headache. I have stripped down certificate authentication which I had running before just to eliminate this as a potential cause of the issue. When running debugging, I do not get any error messages - the handshake completes successfully and the local authentication works fine as well.
Please find the current config and debugging output below. I appreciate any pointers as to what might be wrong here.
: Saved
ASA Version 9.1(1)
hostname ASA
domain-name ingo.local
enable password ... encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd ... encrypted
names
name 10.0.1.0 LAN-10-0-1-x
dns-guard
ip local pool VPNPool 10.0.2.1-10.0.2.10 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif Internal
security-level 100
ip address 10.0.1.254 255.255.255.0
interface Vlan2
nameif External
security-level 0
ip address dhcp setroute
regex BlockFacebook "facebook.com"
banner login This is a monitored system. Unauthorized access is prohibited.
boot system disk0:/asa911-k8.bin
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns domain-lookup Internal
dns domain-lookup External
dns server-group DefaultDNS
name-server 10.0.1.11
name-server 75.153.176.1
name-server 75.153.176.9
domain-name ingo.local
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network LAN-10-0-1-x
subnet 10.0.1.0 255.255.255.0
object network Company-IP1
host xxx.xxx.xxx.xxx
object network Company-IP2
host xxx.xxx.xxx.xxx
object network HYPER-V-DUAL-IP
range 10.0.1.1 10.0.1.2
object network LAN-10-0-1-X
access-list 100 extended permit tcp any4 object HYPER-V-DUAL-IP eq 3389 inactive
access-list 100 extended permit tcp object Company-IP1 object HYPER-V-DUAL-IP eq 3389
access-list 100 extended permit tcp object Company-IP2 object HYPER-V-DUAL-IP eq 3389
tcp-map Normalizer
check-retransmission
checksum-verification
no pager
logging enable
logging timestamp
logging list Threats message 106023
logging list Threats message 106100
logging list Threats message 106015
logging list Threats message 106021
logging list Threats message 401004
logging buffered errors
logging trap Threats
logging asdm debugging
logging device-id hostname
logging host Internal 10.0.1.11 format emblem
logging ftp-bufferwrap
logging ftp-server 10.0.1.11 / asa *****
logging permit-hostdown
mtu Internal 1500
mtu External 1500
ip verify reverse-path interface Internal
ip verify reverse-path interface External
icmp unreachable rate-limit 1 burst-size 1
icmp deny any echo External
asdm image disk0:/asdm-711.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
object network obj_any
nat (Internal,External) dynamic interface
object network LAN-10-0-1-x
nat (Internal,External) dynamic interface
object network HYPER-V-DUAL-IP
nat (Internal,External) static interface service tcp 3389 3389
access-group 100 in interface External
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server radius protocol radius
aaa-server radius (Internal) host 10.0.1.11
key *****
radius-common-pw *****
user-identity default-domain LOCAL
aaa authentication ssh console radius LOCAL
http server enable
http LAN-10-0-1-x 255.255.255.0 Internal
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map External_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map External_map interface External
crypto ca trustpoint srv01_trustpoint
enrollment terminal
crl configure
crypto ca trustpoint asa_cert_trustpoint
keypair asa_cert_trustpoint
crl configure
crypto ca trustpoint LOCAL-CA-SERVER
keypair LOCAL-CA-SERVER
crl configure
crypto ca trustpool policy
crypto ca server
cdp-url http://.../+CSCOCA+/asa_ca.crl:44435
issuer-name CN=...
database path disk0:/LOCAL_CA_SERVER/
smtp from-address ...
publish-crl External 44436
crypto ca certificate chain srv01_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain asa_cert_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain LOCAL-CA-SERVER
certificate <output omitted>
quit
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable External client-services port 44455
crypto ikev2 remote-access trustpoint asa_cert_trustpoint
telnet timeout 5
ssh LAN-10-0-1-x 255.255.255.0 Internal
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh timeout 5
ssh version 2
console timeout 0
no vpn-addr-assign aaa
no ipv6-vpn-addr-assign aaa
no ipv6-vpn-addr-assign local
dhcpd dns 75.153.176.9 75.153.176.1
dhcpd domain ingo.local
dhcpd option 3 ip 10.0.1.254
dhcpd address 10.0.1.50-10.0.1.81 Internal
dhcpd enable Internal
threat-detection basic-threat
threat-detection scanning-threat shun except ip-address LAN-10-0-1-x 255.255.255.0
threat-detection statistics access-list
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
dynamic-filter use-database
dynamic-filter enable interface Internal
dynamic-filter enable interface External
dynamic-filter drop blacklist interface Internal
dynamic-filter drop blacklist interface External
ntp server 128.233.3.101 source External
ntp server 128.233.3.100 source External prefer
ntp server 204.152.184.72 source External
ntp server 192.6.38.127 source External
ssl encryption aes256-sha1 aes128-sha1 3des-sha1
ssl trust-point asa_cert_trustpoint External
webvpn
port 44433
enable External
dtls port 44433
anyconnect image disk0:/anyconnect-win-3.1.02026-k9.pkg 1
anyconnect profiles profile1 disk0:/profile1.xml
anyconnect enable
smart-tunnel list SmartTunnelList1 mstsc mstsc.exe platform windows
smart-tunnel list SmartTunnelList1 putty putty.exe platform windows
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client ssl-clientless
webvpn
anyconnect profiles value profile1 type user
username write.ingo password ... encrypted
username ingo password ... encrypted privilege 15
username tom.tucker password ... encrypted
class-map TCP
match port tcp range 1 65535
class-map type regex match-any BlockFacebook
match regex BlockFacebook
class-map type inspect http match-all BlockDomains
match request header host regex class BlockFacebook
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 1500
id-randomization
policy-map TCP
class TCP
set connection conn-max 1000 embryonic-conn-max 1000 per-client-max 250 per-client-embryonic-max 250
set connection timeout dcd
set connection advanced-options Normalizer
set connection decrement-ttl
policy-map type inspect http HTTP
parameters
protocol-violation action drop-connection log
class BlockDomains
policy-map global_policy
class inspection_default
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect dns preset_dns_map dynamic-filter-snoop
inspect http HTTP
service-policy global_policy global
service-policy TCP interface External
smtp-server 199.185.220.249
privilege cmd level 3 mode exec command perfmon
privilege cmd level 3 mode exec command ping
privilege cmd level 3 mode exec command who
privilege cmd level 3 mode exec command logging
privilege cmd level 3 mode exec command failover
privilege cmd level 3 mode exec command vpn-sessiondb
privilege cmd level 3 mode exec command packet-tracer
privilege show level 5 mode exec command import
privilege show level 5 mode exec command running-config
privilege show level 3 mode exec command reload
privilege show level 3 mode exec command mode
privilege show level 3 mode exec command firewall
privilege show level 3 mode exec command asp
privilege show level 3 mode exec command cpu
privilege show level 3 mode exec command interface
privilege show level 3 mode exec command clock
privilege show level 3 mode exec command dns-hosts
privilege show level 3 mode exec command access-list
privilege show level 3 mode exec command logging
privilege show level 3 mode exec command vlan
privilege show level 3 mode exec command ip
privilege show level 3 mode exec command failover
privilege show level 3 mode exec command asdm
privilege show level 3 mode exec command arp
privilege show level 3 mode exec command ipv6
privilege show level 3 mode exec command route
privilege show level 3 mode exec command ospf
privilege show level 3 mode exec command aaa-server
privilege show level 3 mode exec command aaa
privilege show level 3 mode exec command eigrp
privilege show level 3 mode exec command crypto
privilege show level 3 mode exec command ssh
privilege show level 3 mode exec command vpn-sessiondb
privilege show level 3 mode exec command vpnclient
privilege show level 3 mode exec command vpn
privilege show level 3 mode exec command dhcpd
privilege show level 3 mode exec command blocks
privilege show level 3 mode exec command wccp
privilege show level 3 mode exec command dynamic-filter
privilege show level 3 mode exec command webvpn
privilege show level 3 mode exec command service-policy
privilege show level 3 mode exec command module
privilege show level 3 mode exec command uauth
privilege show level 3 mode exec command compression
privilege show level 3 mode configure command interface
privilege show level 3 mode configure command clock
privilege show level 3 mode configure command access-list
privilege show level 3 mode configure command logging
privilege show level 3 mode configure command ip
privilege show level 3 mode configure command failover
privilege show level 5 mode configure command asdm
privilege show level 3 mode configure command arp
privilege show level 3 mode configure command route
privilege show level 3 mode configure command aaa-server
privilege show level 3 mode configure command aaa
privilege show level 3 mode configure command crypto
privilege show level 3 mode configure command ssh
privilege show level 3 mode configure command dhcpd
privilege show level 5 mode configure command privilege
privilege clear level 3 mode exec command dns-hosts
privilege clear level 3 mode exec command logging
privilege clear level 3 mode exec command arp
privilege clear level 3 mode exec command aaa-server
privilege clear level 3 mode exec command crypto
privilege clear level 3 mode exec command dynamic-filter
privilege cmd level 3 mode configure command failover
privilege clear level 3 mode configure command logging
privilege clear level 3 mode configure command arp
privilege clear level 3 mode configure command crypto
privilege clear level 3 mode configure command aaa-server
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:41a021a28f73c647a2f550ba932bed1a
: end
Many thanks,
Ingo

Hi Jose,
here is what I got now:
ASA(config)# sh run | begin tunnel-group
tunnel-group DefaultWEBVPNGroup general-attributes
address-pool VPNPool
authorization-required
and DAP debugging still the same:
ASA(config)# DAP_TRACE: DAP_open: CDC45080
DAP_TRACE: Username: tom.tucker, aaa.cisco.grouppolicy = DfltGrpPolicy
DAP_TRACE: Username: tom.tucker, aaa.cisco.username = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username1 = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username2 =
DAP_TRACE: Username: tom.tucker, aaa.cisco.tunnelgroup = DefaultWEBVPNGroup
DAP_TRACE: Username: tom.tucker, DAP_add_SCEP: scep required = [FALSE]
DAP_TRACE: Username: tom.tucker, DAP_add_AC:
endpoint.anyconnect.clientversion="3.1.02026";
endpoint.anyconnect.platform="win";
DAP_TRACE: Username: tom.tucker, dap_aggregate_attr: rec_count = 1
DAP_TRACE: Username: tom.tucker, Selected DAPs: DfltAccessPolicy
DAP_TRACE: Username: tom.tucker, DAP_close: CDC45080
Unfortunately, it still doesn't work. Hmmm.. maybe a wipe of the config and starting from scratch can help?
Thanks,
Ingo

Local Administration rights for Xcelcius and Crystal Reports

Hello Customercare,
I am currently compiling a list of software that does and does not require local administrator rights to install and run.
I was wondering if you would be able to assist me, we currently use Crystal Reports version 8.5 and Crystal Xcelsius 4.5. I need to find out if these programs require local administrator rights on the computer they are to be used on to a) Install properly and B) run from that computer by a user without local administrative rights for that machine.
Please let me know or point me in the right direction of a resource who would be able to help me with the above information.
Many thanks for your time,
Phil Booth
GroupM
Technical Support Engineer

Hi Joseph,
Download [Product guide/end userdocument|https://websmp103.sap-ag.de/~form/sapnet?_SHORTKEY=01100035870000713358&_SCENARIO=01100035870000000202&] select your product.
For Business objects Integration kit for SAP click [here|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/a00ee3b2-5283-2b10-f1bf-8c6413e0898f]
Regards,
Shweta

Database, user name, password for Crystal report

We're running BOE XI 3.1 and we use WebI reports. One of our departments uses Crystal reports, and they'd like to be able to run them in our BOE environment so that they can refresh reports over the Web. They uploaded a report to BOE (using Add -> Crystal Reports) but when they try to refresh it they aren't prompted for the database or a password, and the refresh fails.
How do you specify the database / data source / data connection (or whatever it's called) for a Crystal report? How do you specify the user name and password to use for authenticating to the database?
Thanks,
Laura

I am fairly new on this forum but we have been doing exactly what you are talking about with Crystal Reports published to BO XI 3.1 for a while. There are a few things we have found that have to be done to make this work right...
- Use the EXACT same ODBC/database connection setup on both the Crystal Report developer's machine and on the BO server
- On the developer's machine use integrated security for the database connection
- Then after you upload the report to BO, go into CMC and open the Crystal Report's properties. In there under "Default Settings" you will see an option for Database Configuration. The User and Password under the "Use original logon informstion from the report" should be empty. Put in a valid userid and password that has access to the database.
- Also, in the Database Configuration screen make sure the Server and Database boxes are filled-in - they will be greyed out and you can't change them (this is why you have to make sure the ODBC/database info is the same). If they are wrong, you will need to fix the ODBC/database connection in the original RPT file.
- Finally, you need to scroll to the bottom of the Database Configuration page and select the radio box "Use same database logon as when report is run" and then Save and Close
Now when users run the report it will use the user and password you entered to do it. The disadvantage is you are not using integrated security but then the users also never get prompted for a password. We tried very hard to get integrated security to work but could not manage it.
Hope this helps!
Larry

Central User Administration Idoc's for a XI system

Hello,
We are setting up a Central User Administration (CUA) in Solution Manager. One of the systems that needs to be a child of this CUA is a SAP XI 2.0 system.
The distribution of the Users is done by IDocs.
Everything is working fine from the CUA to a SAP R/3 system.
But when we make the XI 2.0 a child all the IDoc's are caught by the XI IDoc adapter in stead of going directly to the IDoc inbound handler of the XI system.
Has anyone been able to send an IDoc to an XI 2.0 and bypassing the IDoc adapter and sending them directly to the XI IDoc Inbound handler?
Any kind of info will be greatly appriciated.
With kind regards,
Leon Boeijen

Hi Leon,
to bypass the IDoc Adapter for specific IDocs you can specify these IDocs using the report IDX_SELECT_IDOCTYPE_WITHOUT_IS.
Kind regards,
Andreas

SimpleSearch can only retrieve documents(reports) for enterprise users!!

Good Day Everybody,
i'm using SimpleSearch to retrieve all reports for specific users, the problem is that i'm only able to retirve reports for enterprise users and i can not get reports for domain users, anybody knows why?? or there is another way to do so??
GetDocumentList is working fine but it's only retirves reports for the loged in user only....
also i would like to extacrt all useres which has permession to reports, so would you please give me a hand of help and send me how to do!!!
kindly find below the code i'm using to retrieve all reports for specific users:
//After creating connection, seesion and login using administrator enterprise user
        SimpleSearch mySearch = new SimpleSearch();
        mySearch.InAuthor = txtUsername.Text;//.Trim();
        //mySearch.InName = "";
        mySearch.BeginDate = System.DateTime.Now.AddYears(-2);
        mySearch.BeginDateSpecified = true;
        mySearch.ObjectType = "documents";// "documents";
        BusinessObjects.DSWS.BICatalog.SortType[] mySort = new BusinessObjects.DSWS.BICatalog.SortType[1];
        mySort[0] = BusinessObjects.DSWS.BICatalog.SortType.NAMEASC;
        BICatalogObject[] searchResults= null ;
        searchResults = boCatalog.Search(mySearch, mySort, null, null, InstanceRetrievalType.WITHOUTINSTANCE);
        if (searchResults != null)
            foreach (BICatalogObject myBOCatObject in searchResults)
                Response.Write(myBOCatObject.Name + "----" + myBOCatObject.UID + "" + myBOCatObject.CreationDate + "--" +"<BR>");
        else
            Response.Write("no documents");

Which version are you using?
BICatalog is pretty limited, and has been deprecated for more recent versions.
Sincerely,
Ted Ueda

Error while scheduling report for SAP users

Hi All,
We have SAP authentication enabled in our BO environment. (BO XI 3.1 sp2 FP 2.6 on windows 2003 server).
There are some webi reports based on BW Bex queries that we are trying to run on behalf of certain SAP end users. This we are doing using "schedule for" option.
Now what is happening here is if the end user has logged in once in BO system ,it runs fine. But in case user has not logged in to BO (using infoview etc.) ,it throws error saying "incomplete logon data" . Also if user changes or reset his password in BW and if he doesn't login to infoview after that ,system throws another error "Name or password incorrect (repeat logon)".
Based on these observation, we are suspecting if BO system uses stored SAP users credentials while scheduling report for them based on their last login.
Would like to mention here that we have checked option "automatically import users".
Please advice if this behavior is normal or we are missing some setting.
Thanks in advance,
Chandra

Hi All,
Any pointers or suggestions for this issue ??
Is there a setting/option avialable in CMC which could resolve these errors.
Or, user has to login once to infoview in all circumstances to avoid these errors.
Thanks,
Chandra

User administration reporting for BOE 4.1

Similar Messages

Maybe you are looking for