User groups and permissions problem

Similar Messages

• What  is difference between user group and reference user group?

  hi
  guys,
          what  is difference between user group and reference user group? 
  your regards
    p.suresh

  Hi ,
  Chk the link below for your clarifiacation.
  http://help.sap.com/erp2005_ehp_03/helpdata/EN/5c/c1c81c445f11d189f00000e81ddfac/frameset.htm
  Hope it helps.
  Regards,
  Amit
  Edited by: Amit Kotwani on Sep 2, 2008 2:15 PM

• Win 8.1 domain workstation. Block all access, except for a fews users/groups and domain controller information/date.

  Hi!
  Win 8.1 pro, domain workstation. How Block all access, except for a fews users/groups and domain controller information/date.
  Nuance:
  From domain AD is locked Workstation Firewall "Domain profile" edit.
  Possible?
  cenubit

  Hi GirtsR,
  I am not sure the command to use the SID to accomplish what you want to achieve, if you only know the SID, you could take use Powershell to find the related information, more information, please check:
  Working with SIDs
  And a similar thread for reference:
  How to find user/group known only SID
  More reference: Default local groups.
  Best regards
  Michael Shao
  TechNet Community Support

• HT4798 I have forgotten my password for mountain os. I have followed the instructions about going to "User group" and enetering my apple ID. It doesn't work. Can anyone help me? Thank you.

  I have forgotten my password for mountain os. I have followed the instructions about going to "User group" and enetering my apple ID. It doesn't work. Can anyone help me? Thank you.

  Welcome to the Apple Support Communities
  https://discussions.apple.com/docs/DOC-4101

• Interesting Information about Hyperion User Groups and Conferences

  Ed Roske has an interesting post on his blog, including a letter from John Kopcke (SVP of EPM at Oracle). There is a lot of content discussing the disbandment of the Hyperion User Groups and the absorption by OAUG with the new Hyperion SIG (Special Interest Group). In addition there is discussion of conference's focusing on Hyperion content.
  Take a look at http://looksmarter.blogspot.com/2008/06/john-kopckes-letter-to-hyperion.html
  Best Regards,

  Gary,
  Thanks for nice post

• How to manageimported users, groups, and computers in the "Magic Triangle"

  How do I manage imported users, groups, and computers? Server Preferences versus Workgroup Manager? I can import users and groups with the former but it offers limited configurable options. I can view all users. groups. and computers (from active directory) in the latter, but it does not designate which accounts have been imported.
  I've got a magic triangle setup, with my users, groups and computers in Windows Active Directory, and my MacOS X snow leopard server setup as a directory master, abd bound to AD as well. I wish to apply group policy like settings to my Mac OS X leopard and snow leopard clients.
  Here's a summary of my goals:
  1. Time Machine Storage for mac users when they logon to Mac OS X computers.
  2. Automount group shares located on the Mac OS X Server.
  3. Redirect user desktop and document folders to user shares either on the Mac OS X server or my Windows file server.
  4. Automount a custom folder (for each user) located either on the Mac OS X server or my Windows file server.
  5. Setup Mac OS X server as a printer server with quotas for all mac and windows computer users.
  Goal #1 appears to be working. "need help with the rest. Thanks

  I'm not sure you want to import users to use the magic triangle properly. I think importing creates 'Augmented Records' - the user icons have blue dots.
  The principle is this…
  Bind the server to Active Directory (AD) & create an Open Directory master (OD). This can be done from Server Admin, in the OD section, via the change button.
  Then you use Workgroup Manager, set the viewing directory (tiny little globe in top left) to use LDAP records on the server - LDAPv3/127.0.0.1. Authenticate (lock on right of toolbar) add a group, then switch to to its Members tab, click + Then change the user list to show the AD records & add the AD users to the OD group. It sounds weird & wrong, but it is how it works.
  You are never modifying the AD records, just assigning a group to the users in OD. It's why the clients need to bind to AD & OD.
  From there you can set the Managed prefs (MCX) for the members of the OD group. It also helps to add a guest computer account to OD to assign computer prefs based on the macs that bind to the server - it's in the File menu when you select the computes list in OD.
  I hope that's clear, not sure I can help with the other tasks, but they tend to fall into place once you have the complex start in place.

• Collaboration Drives Innovation as China Oracle User Groups and Oracle University Work Together to Change Lives

  Check out the latest Customers in the Know blog post where Jim Jiang shares the story of an innovative program launched collaboratively by the China Oracle User Groups and Oracle University.
  https://blogs.oracle.com/customersknow/entry/innovation_and_collaboration_at_its

  Check out the latest Customers in the Know blog post where Jim Jiang shares the story of an innovative program launched collaboratively by the China Oracle User Groups and Oracle University.
  https://blogs.oracle.com/customersknow/entry/innovation_and_collaboration_at_its

• Export and import Sharepoint group and permissions

  We have some custom sharepoint groups and permissions created.How can i just export and import
  these group and permissions into another server.
  I do not want to restore entire site collection.
  just the groups and permissions...

  hey,
  You can find some code from Powershell here:
  http://geekswithblogs.net/bjackett/archive/2009/04/24/the-power-of-powershell-and-sharepoint-enumerating-sharepoint-permissions-and.aspx
  Or
  http://get-spscripts.com/2010/07/adding-groups-with-permission-levels-to.html
  Founder of SharePoint CookBook:
  http://www.GokanOzcifci.be
  Microsoft Certified Technology Specialist: SharePoint 2010, Configuring
  Microsoft Certified Personal

• OD Groups and Perms not updating?

  I have a file server (to be used by about 60 people) that connects to an OD master for account info.
  When changing a users group on the OD Master (which affects which shares are available), the change doesn't seem to propagate to the file server right away and can take a random amount of time to make it through.
  Shouldn't this type of thing be instant, or is it just how it works?
  Is there a way to force an update or to speed the update up? Sometimes it doesn't happen at all until i share or unshare something, which doesn't always work either.
  I suppose I could set up a replica on the file server itself, but the apple manuals usually allude to specializing services to max out performance.

  I suppose I could set up a replica on the file server itself, but the apple manuals usually allude to specializing services to max out performance.
  That is because Apple wants to sell hardware. Realistically, an Xserve can handle the load of 60 concurrent AFP connections (not 60 network home folders). Running both AFP and OD on a single box is not going to kill it. There are many deployments that have one Xserve and they run 10 or more services on one box. Not everyone can afford separation of services.
  Additionally, if you have an OD Master, you probably should be running an OD Replica. Just for the safety net that it provides. For example, having you users, groups, passwords, and policy automatically replicating is a nice warm and fuzzy. Plus, if you have a problem with the OD Master, you environment can still function.
  That being said, configuring as connected to directory system is generally a good solution to avoid the extra services of directory services. Normally, this is a live lookup and no local storage is needed. Where are you not seeing the updates? In Server Admin when configuring permissions? What if you use dscl to browse the parent domain? Do you see the new groups, users, etc?
  If this were a replica, the duration of time in which a sync occurs can be set. But in a connected to role, the lookups should be dynamic and this instant.
  Hope this helps

• Is there a way to pull  User, Group , Other permissions of a file

  I wanted to know whether Java provides any API to pull up each and every permission associated with a file.
  For example: In Unix, a file has 3 sets of permissions as shown below:
  <UserPermissions><GroupPermissions><Others'Permissions>
  Example: -rwxrwxrwx
  r - for read
  w - for write
  x - for execute
  There are some methods provided in java.io.File, such as canRead() and canWrite(), which help in telling whether a file is readable or writable. But I did not find any API which tells whether a perticular user has read/write/execute permission or not. Also, I presume the canRead(),canWrite() methods pull up the permissions pertaining to the owner of the file, but not for the group and others part of a Unix File's permissions.
  Is there a way to pull up the read/write/executable permissions for all the 3 catergories namely, UserPermissions, GroupPermissions and Others'Permissions.
  I appreciate your note on this and appreciate your time too.

  In the java.io.File class, there's methods canRead() and canWrite().
  They will test the read/write permissions of the Unix user you are running your Java program with.
  They will not return a list of user names, user groups etc though.
  You'd have to get the permissions through some platform specific method, eg. via JNI.
  regards,
  Owen

• Non-privileged user groups and examples of tasks

  Wiki says that normal, non-privileged users can and should be given membership in the following groups:
  audio - for tasks involving sound card and related software
  floppy - for access to a floppy if applicable
  lp - for managing printing tasks
  optical - for managing tasks pertaining to the optical drive(s)
  storage - for managing storage devices
  video - for video tasks and hardware acceleration
  wheel - for using sudo
  power - used w/ power options (e.g.: shutdown with power button)
  What I'm interested is the examples of the typical tasks (besides mentioned on Wiki) that require membership in these groups: storage, video, power, camera, games.
  If someone could break it down nicely I would be much obliged. Thank you.

  Runiq wrote:
  Storage allows you to (un)mount removable media as user in graphical file managers (when HAL is involved).
  Power allows you t resume/suspend/shutdown/reboot as user.
  Some games set the permissions on their executables so that a non-member of the games group can't start the game.
  For the others, I have no idea unfortunately. By the way, the groups are to be deprecated in the (rather far?) future since you are supposed to get proper permissions when you need them. I think ConsoleKit is involved in that IIRC.
  Thanks for a quick reply. That's an interesting idea to grant privileges dynamically on demand. Haven't heard of it yet. Where can I read about it more?
  Last edited by xCrucialDudex (2010-02-26 09:38:07)

• Migrated users incorrectly, now permissions problems

  Hi all!
  I purchased a 2011 MBP this year, to replace my 2008 MBP. I attempted to use Migration Assistant, but didn't transfer correctly and now I'm having permissions related problems. I'm assuming they are related, as that is how it sounds from posts I've read in these forums.
  When I used migration assistant, I had already created the same user name on the new MBP. Now that I've read many posts in this forum, I realize I should never have created a user on the new MBP, prior to using migration assistant. Anyway, having trouble with duplicate account names, I believe I reformatted the drive and used the drag and drop method from the old MBP to the new (I can't honestly remember, but I'm pretty sure that's the method I chose). I still created the same user name on both, so perhaps that wasn't a great idea.
  For the most part I didn't notice any problems, until after I purchased and installed MS Office 2011. I would open any Office app and everytime it would require me to go through all opening screens as if it was the first time opening Office, even though it had the serial number and all personal information already. I went through MS tech support and fortunately spoke with a very knowledgeable mac user and we traced it down to a permissions problem. He suggested I delete the user name and use the TestName we had created (which had no problems) At the time, I was in the middle of a large video project and I didn't want to do anything that may cause potential problems with it. I finished the project and began another one immediately. In the new project, I had problems with Premiere Pro not recognizing audio in some, not all, clips. I spent days with Adobe tech support and even sent them a sample file. Fast forward to yesterday; it was once again traced to permissions problems. The clip worked under the root user account we (Adobe tech support and I) created.
  So, my question is what is the best way to proceed? It seems apparent that I have to delete a user or figure out how to repair all permissions at once, since I have found files and repaired a few with the one-at-a-time method. Obviously this is time consuming and I don't have that kind of time.
  Should I delete the username and move things to a new username? If so, what are the best steps to prevent any permissions problems? Or is there a way to repair all file permissions through a command in the terminal?
  I can't honestly say I never had any permission problems with the 2008 MBP before, so if by chance there were permisions problems, or any other user related problems, would they have been introduced to this new MBP?
  Thank you in advance for the help! :-)
  EM

  emerson MEDIA wrote:
   About make a copy of /Users/paisleye into /Users/paislWhy am I doing that? Just for backup? Through the remainder of your post, it sounded as if I would only be accessing /Users/paisleye. Did I mis-read something?
  Exactly -- just for backup.  You may notice I'm a little paranoid -- if you have a Time Machine backup, and a SuperDuper/CarbonCopyCloner bootable clone on an external disk, AND a copy in /Users/paisl -- then you've got 3 backups before you start.  :-)  And when you are done you will have the original of /Users/paisleye in /Users/paisl and the original of /Users/test will still be in /Users/test.
  What should happen with the ordering is this:
  -- if a file is in /Users/test but not in /Users/paisleye, then it will copy over into /Users/paisleye with it's current ownership and permissions, which seem to be right.
  -- if a file is in /Users/paisleye but not in /Users/test, then the copy isn't going to fix anything, but it isn't going to hurt anything more, either.  The step where you set ownership of everything in /Users/paisleye to test:staff might just fix all of those problems.
  -- if a file is in /Users/paisleye AND /Users/test, then if the ownership/permissions are right on one and wrong on the other it's probably /Users/test that's good.  The copy (the long complicated tar command) will copy the /Users/test version and it's permissions/ownership overtop the /Users/paisleye version.  If that's not right, there is a backup in /Users/paisl, and on the TimeMachine, and on the clone.
  What's likely is that you are going to have the occasional weird thing happen with some stray file for months/years.  You can always go back and use chown and/or chmod on an individual file to fix it.  (The -R is the "recursive" flag to do a directory and everything underneath.  Leave it out, and it just does one file at a time.)
  I actually ended up with three different accounts on my machine that belong to "me" and had to do this.  (I bought the machine with free Parallels installed, and MacMall created an account called "user" to install it and I had to clean that up when I got it.)  This is not a terrible thing.  One thing that I would recommend if you get it all done and cleaned up and you are happy -- keep the test account, and keep it as an Administrator; then turn off Administrator on the paisleye account.  Then every time you need to do something Administrator, just give the test username/password.  Every so often you will get software that will refuse to install from a non-priv'd account (looking at you adobe!) so just turn on Fast User Switching and log into the test account and install from there.  It just a lot safer if you are not logged in all of the time with privs...
  And this unix stuff isn't hard to get the hang of.  If you half remember something, you can google it and find oodles of excellent documentation.

• Ownership and permissions problem

  Hi all
  I've got a new iMac 27" running 10.6.4. Following my old Mac Pro's departure I have copied all my backed up work files and folders from an external drive to my documents folder (not via Migration Assistant / Time Machine backup - MA wouldn't recognise the drive!). I can open the files without problem, but I can't save them to the same file or folder. If I try to do so, I get a message saying the file is either read-only, I don't have permission, it may be open by another application, close everything - basically I can't. If I create a new folder with its own new files, I can save and re-save without a problem, its just my old/existing work files that I can't work on.
  I've just spent an hour and a half on the phone to Applecare who cannot resolve this. We tried fixing permissions from the Mac OSX startup disc, creating a new user account with admin capabilities, manually getting info on specific files and checking the permissions, unlocking and applying permissions to all enclosed files and folders so they have read and write capability, but nothing works. Applecare tell me to re-save the files with a new name in a new location. I have literally hundreds of thousands of files, this is not an attractive solution. So they suggested I try and find a 3rd party app that will batch-change ownership on these files.
  I've read a lot about people with permissions problems but none quite the same as mine. If the Apple OS (get info) and Disk Utility cannot change the permissions so I can work effectively, can another piece of software realistically do this?
  Any help would be much appreciated.
  Dave

  Thanks for the reply baltwo. I did that, and this is what I got:
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00001.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00002.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00003.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00004.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00005.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00006.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00007.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00008.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00009.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00010.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00011.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00012.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00013.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00016.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00017.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00018.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/mar07_copyoff/pics_nmovies/DSC00019.JPG: Operation not permitted
  chown: /Users/davegray/Documents/GGbackup/2007-copyoff/nov07copyoff/london mums/LaunchU3.exe: Operation not permitted
  I tried to open, amend and save a file (not related to any of the above document paths) and am still getting:
  "The file may be read-only, or another user may have it open. Please save the document with a different name or different folder."

• I am receiving the 'Could not sign you in [Access denied: 530]. Check your user name and password' problem on Adobe Muse CC 2014 and I cannot access the xml file that is supposed to fix this issue?

  I am a PC user and I have Adobe Creative Cloud Muse 2014. I have received the 'Could not sign you in [Access denied: 530]. Check your user name and password' error when trying to upload my muse site to my ftp host, GoDaddy. I have successfully done this in the past and only recently it has stopped working. I looked online at the FAQ Adobe Muse Help | Uploading an Adobe Muse Site to a third-party hosting service and it said to download the ftpprefs.xml file but this file simply leads to a blank page that says /*Not found*//*Not found*/.
  Can someone direct me to a working page with this file or provide a different solution? Thank you!

  Hello,
  As you are getting error [Access denied: 530] it means issue is with access. Either the username and password you are entering is incorrect or you do not have proper permissions.
  I would suggest you to contact Godaddy to either reset password or reset the permissions.
  Regards
  Vivek

• Retrieving User groups and email for all users in a group

  Hi Everyone,
  I need to create an ADF application to retrieve all the groups in OID, the user would select a group and it should list down all the email addresses in that group.
  Can you suggest what is the best way to achieve this. My main concern is how to retrieve groups and email addresses from OID. I was unable to find APIs for it.
  Your suggestions are greately appreciated.
  Thanks,
  Husain

  In a multi-user environment, a user install a dreamweaver extension,but just the user who install the extension can use it.
  Is there a way that administrator install the extension and make this extension available for other users in multi-user environment(e.g. the Windows 7)
  Dreamweaver had this capability many releases ago, but it has been dropped, so it's no longer available.
  Regards,
  Randy Edmunds
  Dreamweaver Development
  Adobe Systems, Inc.