User deleted from EBP

Similar Messages

• Problem with tab access after user deleted from group

  9ias version 9.2.0.1
  There seems to be a problem (potential bug???) when deleting a user from a portal group. I have a portal page set up with multiple tabs. These tabs can only be accessed by users belonging to certain portal groups. When i add a user to a group, the user sees the necessary tabs when authenticated. However, if i delete this user from the group there is a problem. When the user re-logs into portal, they will see all the tabs belonging to the group they were deleted from. However, when they select this tab nothing happens and the portal goes into a state of flux (doesn't navigate). One way to resolve this is to go in as a portal admin, edit any tab and select apply. The portal then seems to refresh.
  This solution isn't practical. Is this a bug? Is there a patch or another solutions??? Thanks

  Hi Turloch! Thanks for your help!
  Those SQL Statements were extracted from the MS Access application that we will continue to use to access the data , now on an Oracle Database.
  I don't know what I can do to make this kind of statements works as it is on Access database. The first query, that I called Query1 works fine on Oracle, I just mentioned it because the 2nd Query , named Query2, use it.
  I'm not able to understand why when I change the 1st. query to a "make-table" query the Query2 works as desired, but if I keep the Query1 and Query2 as it is on the MS Access Application I got the ODBC error message and the ORA-00904 error message , related (I think!) to the FieldTmp field used on the LEFT JOIN statement (AND).
  As I told before, if I change the AND clause to compare to another field, as instance, field1 :
  FROM Query1 LEFT JOIN Table3
  ON (Table3.field1=Query1.Field2) AND
  (Table3.field5 = Query1.Field1)
  it works.
  Please, is there anything that I can do to keep the MS Access Application unchanged?
  Oracle = 8.1.6
  Oracle ODBC Driver = 8.1.6.4
  Oracle Migration Workbench = 1.3.1
  Thanks in advance,
  Elaine Viel Denadai

• User deletion from OIM

  hi guys.. I have the following doubts.. kindly help me out
  1)Is it true that no actual deletion of any user record takes place in OIM and they are just disabled.If that is the case suppose any new joinee joins an organization wit the same name as that of an employee who has left wont there be any conflict between the two records?
  2)We all know that recon is possible from AD to OIM.Now if sur name of an employee is changed in SAP(trusted authoritative source), how is this change reflected about in AD provided provisioning has already taken place?

  Hi,
  There are a lot of tables associated with users that would need to be touched to delete an ex-employee, as that means that you need to delete all tasks associated with that employee (ie requests, provisioning processes, reconciliation data, etc).
  Deleting employees might also affect the audit trails of other things. Let's say, for example, that someone submitted a request for 3 employees. One leaves the company, but 2 stay on for 10 more years. If you try to delete the first employee, the request's audit record becomes invalid. You need to keep that employee's key around.
  To improve the performance of the database, it is best to look at other data that should be archived (as opposed to employees), like reconciliation data (I believe that can be archived now with the new 9.0.3 database tuning examples), User Audit data, and perhaps old processes that are no longer necessary. BTW, the biggest tables are always the RCD/E (recon tables), SCH (task table), and the UPA (user audit) tables.
  Deborah

• Any version od IDSync supports user deletion from AD to DS

  Hi,
  I would like to know that any version of IDSync supports deletion of users in AD to be synced with DS 5.2. We use Version - 1 2004Q3
  Build - 2004.259.1055 with Win2k3 AD. if it is there how to go about implementing it in a production environment.
  shaji

  hi,
  i don't know if this is the recommended way but we have a cron job running
  where we check for deleted AD acounts:
  <IDSYNC_INSTALL_PATH>/idsync resync -D cn=<LDAP_MANAGER> -w <LDAP_MANAGER_PW> -h <LDAP_SERVER_HOST> -p <LDAP_PORT> -q <IDSYNC_CONF_PW> -s <ROOT_SUFIX> -x -o Windows -i ALL_USERS
  hope it helps

• Employee user not able to access catalogs from EBP

  Hello Seniors,
  We are implementing SRM 4.0 with scenario SSP and CCM 2.0.
  Please note the landscape highlights:
  EBP and CCM component are mounted in the same client and same server.
  CAT and CES are also on same client.
  No XI in picture.
  Catalog upload has been done through CSV format only.
  Please note the activities I have completed:
  Cat_Manager assigned to /CCM/CATALOG_MANAGER role and profile generated.
  Did the customizing for CAT
  Did the customizing for CSE
  Activated the required services
  For the service srm_cse set the log on procedure as "log on data required".
  Maintained a service user "ccm_user" in anonymous log on data.
  Maintained "define external web serices" in SRM img->SRM ->SRM server ->Master data (Here i have a doubt which is explained later)
  Intialized CCM with report.
  Uploaded schema in the master catalog.
  Created supplier ID and catalog.
  Uploaded CSV file for Supplier catalog.
  Mapped Supplier catalog with master catalog
  Published Master cataog.
  maintained entry of master catalog in PPOMA_BBP.
  Now I logged on EBP home page with employee user.
  Went to application shop.
  My master catalog published in CCM component was present there with exact name.
  But when the employee user clicks on the particular catalog link to choose the items from , He is getting an error "" BSP exception: Access to URL /sap/bc/bsp/ccm/srm_cse is forbidden "".
  With this error message immediately the attention goes to the service srm_cse.But there I have maintained a SERVICE user by user ID ccm_user which is existing in SRM SU01.
  In the whole customizing explained above I have two weak points which I want to state now:
  1. The integrated call structure for my particular master catalog was copied from other catalog.
  There i am missing one sr. no. of 70 (ie after 60 , 80 is there).
  But all the values for url, ccm-user, password, sap-client, sap language, locale, catalogID are filled correctly with type as per config guide.
  Do the parameter names should come exactly as per sequence given in guide(In my case it's not so.)
  (If anybody wants to see screenshot for this point pl. give me personal ID.)
  2. I had deleted the entry of my particular master catalog from the external web services to correct the error stated in pt. no 1 .
  But when i tried to create an entry again with the same ID system gave me an error saying that the said catalog is marked for deletion.
  now entry of this particular master catalog is present in table /CCM/D_CTLG_REQ with no x mark in active column.
  But my catalog ID is present in external web services.
  Can point no. 1 and 2 are reasons of the failure to access the catalogs from EBP?
  If it is so then please tell me the procedure to recreate the integrated call structure with same catalog ID.
  Please excuse me for the length of the matter , but i have tried to give every relavant detail so that clarity should be max.
  Best Regards,
  dinesh
  [email protected]

  Hi Dinesh,
  Please see cooments below...
  1. The integrated call structure for my particular master catalog was copied from other catalog.
  There i am missing one sr. no. of 70 (ie after 60 , 80 is there).
  But all the values for url<b>[Adeoye]where did you get your url from? Go to SE80 --> BSP application --> /CCM/SRM_CSE --> Controller -->main.do and check the url</b>, ccm-user, password, sap-client, sap language, locale, catalogID are filled correctly with type as per config guide.
  Do the parameter names should come exactly as per sequence given in guide(In my case it's not so<b>.)[Adeoye] Yes i believe this should be in the satated sequence.</b>
  (If anybody wants to see screenshot for this point pl. give me personal ID.)
  2. I had deleted the entry of my particular master catalog from the external web services to correct the error stated in pt. no 1 .
  But when i tried to create an entry again with the same ID system gave me an error saying that the said catalog is marked for deletion. <b>[Adeoye] Save your deletion first, before trying to create it again.</b>
  now entry of this particular master catalog is present in table /CCM/D_CTLG_REQ with no x mark in active column.
  But my catalog ID is present in external web services.
  I also sent you a cookbook to help with this, hope this helps...
  BR,
  Adeoye

• How to restrict the user(Schema) from deleting the data from a table

  Hi All,
  I have scenario here.
  I want to know how to restrict a user(Schema) from deleting the values from a table created in the same schema.
  Below is the example.
  I have created a table employee in abc schema which has two values.
  EMPLOYEE
  ABC
  XYZ
  In the above scenario the abc user can only fire select query on the EMPLOYEE table.
  SELECT * FROM EMPLOYEE;
  He should not be able to use any other DML commands on that table.
  If he uses then Insufficient privileges error should be thrown.
  Can anyone please help me out on this.

  Hi,
  kumar0828 wrote:
  Hi Frank,
  Thanks for the reply.
  Can you please elaborate on how to add policies for a table for just firing a select DML statement on table.See the SQL Packages and Types manual first. It has examples. You can also search the web for examples. This is sometimes called "Virtual Private Database" or VPD.
  If you have problems, post a specific question here. Include CREATE TABLE and INSERT statements to create a table as it exists before the policies go into effect, the PL/SQL code to create the policies, and additonal DML statements that will be affected by the policies. Show what the table should contain after each of those DML statements.
  Always say which version of Oracle you're using. Confirm that you have Enterprise Edition.
  See the forum FAQ {message:id=9360002}
  The basic idea behind row-level security is that it generates a string that is automatically added to SELECT and/or DML statement WHERE clauses. For example, if user ABC is only allowed to query a table on Sunday, then you might write a function that returns the string
  USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'So whenever any user says
  SELECT  *
  FROM    table_x
  ;what actually runs is:
  SELECT  *
  FROM    table_x
  WHERE   USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'
  ;If you want to prevent any user from deleting rows, then the policy function can return just this string
  0 = 1Then, if somone says
  DELETE  employee
  ;what actually gets run is
  DELETE  employee
  WHERE   0 = 1
  ;No error will be raised, but no rows will be deleted.
  Once again, it would be simpler, more efficient, more robust and easier to maintain if you just created the table in a different schema, and not give DELETE privileges.
  Edited by: Frank Kulash on Nov 2, 2012 10:26 AM
  I just saw the previous response, which makes some additional good points (e.g., a user can always TRUNCATE his own tables). ALso, if user ABC applies a security policy to the table, then user ABC can also remove the policy, so if you really want to prevent user ABC from deleting rows, no matter how hard the user tries, then you need to create the policies in a different schema. If you're creating things in a different schema, then you might as well create the table in a different schema.

• Need to know how records can be deleted from a talbe when user hits cancel report

  In my report I am inserting some records in to a table in the before report trigger and deleting in after report trigger.
  If the user hits the cancel report when the report is processing the records in the records never gets deleted from the table.
  If anyone knows how this can be done, please help me.
  Thanks in advance.

  If your database is 8.1.6, you can try to use temporary tables. The data inside them is automatically deleted when the session (report) ends.
  Also the data is private for each session, so no other user can see the data you have in the temporary table.
  Did you think about the situation when two users will run the report at the same time? How are you handling this (the fact that their data may be scrambled...) The Oracle temporary table eliminates this possibility.
  null

• Exchange Provisioning - Error (User Has been deleted from AD)

  Hello Experts,
  User has been provisioned to AD successfully and I verified it manually by logging into AD server. But when I provision Exchange to User "Create Mailbox" task failed with the following error message "User Has been Deleted from AD".
  I am wondering what causing this issue? Can u assist me?
  Thanks & Regards
  INIYA

  Exchange provisioning task "Get Object GUID" returns "Value not set" . Is this the reason for the above error?
  Seems like AD provisioning process is creating user in AD but not setting Object GUID. Any idea how to resolve this?

• How to delete user SAP* from database in MaxDB

  I´m unable to login with user SAP* into client 000 but in other clients.
  How can I delete the user SAP* from client 000 that I can login with the standard password?
  Is it possible within a transaction in another client or only on DB?

  Hi Damian,
  You need to connect to MaxDB SQL studio using user SuperDBA,admin
  Run the following commands
  select bname from <SAPSCHEMA>.USER02 where bname='SAP' and MANDT='000;*
  This will list user SAP* from client 000
  delete from <SAPSCHEMA>.USR02 where bname='SAP' and MANDT='000';*
  This will delete SAP* from client 000.
  Regards,
  Deepak Kori

• Application user RMCM was found to be deleted from CUCM but agents unable to log into ACD queue was reported 2 weeks later

  Hello All, During an investigation Application user RMCM was found to be deleted from CUCM as per CUCM logs but the first issue of agents unable to log into ACD queue was reported 2 weeks later following a publisher reboot, I am trying to understand what could have caused this ? The reboot obviously could not have made any changes but the logs says RMCM users deleted on 09 May but issue was reported on 20 May and in the meantime services were said to be working without interruption . Can i have some suggestion to understand this to explain customer ?

  The RMCM user being deleted might not have triggered a JTAPI update on the UCCX side.  The publisher reboot which restarted CTIManager would have definitely triggered the update and forced UCCX to re-authenticate with the now non-existent user.

• Batch Jobs fail because User ID is either Locked or deleted from SAP System

  Business Users releases batch jobs under their user id.
  And when these User Ids are deleted or locked by system administrator, these batch jobs fail, due to either user being locked or deleted from the system.
  Is there any way that these batch jobs can be stopped from cancelling or any SAP standard report to check if there are any batch jobs running under specific user id.

  Ajay,
  What you can do is, if you want the jobs to be still running under the particular user's name (I know people crib about anything and everything), and not worry about the jobs failing when the user is locked out, you can still achieve this by creating a system (eg bkgrjobs) user and run the Steps in the jobs under that System User name. You can do this while defining the Step in SM37
  This way, the jobs will keep running under the Business User's name and will not fail if he/she is locked out. But make sure that the System User has the necessary authorizations or the job will fail. Sap_all should be fine, but it really again depends on your company.
  Kunal

• Delete a user record from oracle db

  Hi,
  Can anybody share me a custom workflow which deletes a user record from the oracle db.The user does exist in SUN IDM.
  Please help me.
  Thanks in advance.

  You can use a Trigger and UTL_FILE to write to a file (on the server).
  Example:
  create or replace trigger test_file
    after insert or delete or update on test_case 
    for each row
  declare
  v_logfile utl_file.file_type;
  begin
    v_logfile := utl_file.fopen('\myfiles','test_file.log','a');
    if inserting then
       utl_file.put_line(v_logfile,'Inserting to table');
    elsif deleting then
       utl_file.put_line(v_logfile,'Deleting to table');
    else
       utl_file.put_line(v_logfile,'Updating to table');
    end if;
    utl_file.fclose(v_logfile);
  end test_file;
  I want to generate a log file in which i want to dump some useful messages, when anyone does a dml operation on a table, and also, i want to have a switch like YES or NO (may be an environment variable,,) if i switch it to YES the log file should get generated, if NO then, no log file will be generated..
  can anyone help, how can you do this task ?
  thanks a lot in advance..
  srini

• User has been deleted from UPS, however its getting display in People Search in search site - why ?

  Hello,
  I have deleted user into UPS, however its still being display in people search.
  I believe search crawl will delete the information from people search - However I am not sure whether its correct approach to run delete information from people search.
  If user is not available in UPS then why user's information is being display in site ? and by when it may delete automatically?
  Thanks and Regards,
  Dipti Chhatrapati

  Hello Both, Thank you for your response !
  Kindly consider following points where I am confusing.
  Incremental Crawl is scheduled every 30 minutes - I have rechecked after 15 hours of deleting the user and still this user is available in People search.Few days back I ran the incremental crawl manually in order to delete the users from
  people search that has worked - that means - incremental scheduler is not working as per the expectation ???
  Full Crawl is scheduled on weekly basis - so user information will be deleted automatically when full increment will run next time ? 
  Also, there is My site clean up job that keeps user data for 14 days even though user has been deleted from UPS.that means user information will be deleted only after 14 days of deleting user from UPS ?
  It will be much appreciated if this will be clear from my head !!!
  Note: UPS doesn't sync disabled account since it has been specified in connection filter.
  Thanks and Kind Regards,
  Dipti Chhatrapati

• Checking delete datafile's log from oracle i.e. deleted from root user.

  Can any body help me finding the log for checking any trace for datafiles that are deleted from root user in hp-ux server ( and the sys log has alredy been modified by root user ).
  So is there is any way to check through database or server level to check the trace of deleted datafiles files log.

  user13390258 wrote:
  Thanks, In our project we are using finace 7 application and as it does't support hot backup so we are doing cold backup of database. Through HP RSM software. And we do not have RMAN backup also. Actually i am not geeting proof to show that file has been deleted from ROOT user.I don't know what a "finace 7" application is, but your assertion that it doesn't support a hot backup makes no sense. A backup of the database, and how it is accomplished, should be of no concern to the app.
  As for your statement "we don not have RMAN backup also" ... well, it looks like now you are seeing the cost of that decision. One would hope that once you get through this crisis you would take it upon yourself to institute proper database backups, because - as the dBA - your first and most important job is to insure the security of the database. I never depend on any backup scheme anyone else claims to have in place. If they want to do something they claim will backup the database, fine. But I know that when the excrement hits the ventilation system, it's MY butt on the line to recover the database, so I am d*** well going to be taking rman backups.

• How to delete last user session from backend SQL query?

  Sometimes user session gets closed between some work by any reason.
  When next time that user logs to P6, he gets some error or particular functionaly dosen't work for that user or system hangs.
  In that case if i decided to clear last session history of that user from database, how to write SQL query?
  I don't want to delete all user sessions from table USESSION and USESSAUD, i simply want to delete last user session of particular user (E.g XYZ).

  I am quoting this from MOS Doc Id "Why would multiple session records be present in the User Sessions screen in P6 Web, and why might some of them have different IP addresses? (Doc ID 1600172.1)"
  Multiple sessions show up for users since different sections of P6 Web have their own sessions associated with them. If a user is authorized to use multiple areas of the software they will have multiple sessions each time they log in. Additionally, if users are closing their browsers before logging out of P6 Web Access you might see some past sessions still appearing in the list. These will eventually be cleared out by background jobs, however you can also reset the sessions in the software by clicking the "Reset User" link (Administer > User Sessions > Manage User Sessions), or by choosing the "Reset All Users" link (Administer > User Sessions > Manage User Sessions) to do this for all past sessions.
  Multiple IP addresses for sessions can happen when a user logs in from different machines. For example, a person may login at their desk, but then go to a colleagues workstation to discuss a project, and log in from there. Doing so will leave them with multiple IP addresses in the session records.
  Hope this helps
  Regards,
  Sachin Gupta