Using credentials of a logged in user with JMX (Admin console extension)

Hello,
I would appreciate any info regarding creation of a connection to the DomainRuntimeService MBean server in an administration console extension in BEA Weblogic 9.2.
The problem is that if I provide no security credentials, I'm not able to invoke any operations on the MBean server. Also the possibility of providing "default" user credentials within the extension "configuration" used to authenticate is not an option.
The most convenient way would be to use the same mechanisms used by the rest of the administration console, but there seems to be very little information around about where to retrieve the username/password used to log in to the console.
Thank you very much in advance, If you didn't understand my question, please ask for more information since English is not my native tongue.

Hi,
Check the following wiki content submitted by Michael Nicholls:
https://www.sdn.sap.com/irj/scn/wiki?path=/display/snippets/excel%252bspreadsheet%252bof%252bume%252bassignment%252bdata
The code for getting groups for your case (current logged in user) should be like:-
IWDClientUser clientUser = WDClientUser.getLoggedInClientUser();
IUser user1 = clientUser.getSAPUser();
Iterator groups = user1.getParentGroups(false);
while (groups.hasNext()) {
IGroup group = groupFact.getGroup(groups.next().toString());
String groupname = group.getDisplayName();
Add this group name to a list
I do not have NWDS access at the moment so haven't checked it myself... you may try it out.
Also check out the following threads on the same issue:
Re: Get all Groups for current user
Re: Portal User and Role info

Similar Messages

  • Running a non mandatory program from remote using powershell without a logged in user

    Hi all,
    is there a way to execute a non mandatory program (a task sequence in my case) from remote using powershell
    without a logged in user on the target system?
    I have the following code: 
    $ProgramObject = Get-WmiObject -Class CCM_Program -Namespace "root\ccm\clientsdk" -ComputerName $ComputerItem | Where-Object { $_.Name -match "$ProgramName" }
    Invoke-WmiMethod -class CCM_ProgramsManager -Namespace "root\ccm\clientsdk" -Name ExecutePrograms -argumentlist $ProgramObject -ComputerName $ComputerItem | Out-Null
    Works like charm, but only with a user logged in on the target system what is not a good solution for me. 
    I saw some other ways on the internet but these only work when the program is mandatory.
    Is there a way to archive what I need ? 
    thanks 

    Hi,
    If you deploy the program as a available deployment, there need a user to run the program. Otherwise, the program will never run. This is contradicted with your requirement(run the program at log off).
    So I concur with Peter.
    Best Regards,
    Joyce
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • Deleting users with Delegated Admin

    Hope anyone can help with this:
    When I delete a user with Delegated Admin (For Messaging 5.x) the user
    seems to be deleted in iDA, but it is not deleted in LDAP.
    Therefore, I cannot re-use it's attributes (like E-mail address) for
    another (new) user.
    This causes all kind of problems.
    I can go into the Console and through away the user, then everything
    works again. But I expected iDA also to delete the user if I use the
    delete button.
    Any ideas? Did I forget something?
    Thanks in advance,
    Niels de Troye

    Hi..
    the nda does not remove the user... is put it in suspend mode...
    you have to run the imsimta purge command to remove the user.. or to wait
    the server to do that
    in a day or so....
    take a look at the manual to see how you can do that...
    "N. de Troye" wrote:
    Hope anyone can help with this:
    When I delete a user with Delegated Admin (For Messaging 5.x) the user
    seems to be deleted in iDA, but it is not deleted in LDAP.
    Therefore, I cannot re-use it's attributes (like E-mail address) for
    another (new) user.
    This causes all kind of problems.
    I can go into the Console and through away the user, then everything
    works again. But I expected iDA also to delete the user if I use the
    delete button.
    Any ideas? Did I forget something?
    Thanks in advance,
    Niels de Troye--
    Over and Out
    Giorgos Kiriakidis
    Technical Department
    NetSmart S.A.
    Panepistimiou 58.
    Athens 10678
    Hellas
    Tel +3013302608
    Fax +3013302658
    Email [email protected]
    This message contains confidential information intended for a specific
    individual and purpose,
    is protective by law. If you are not the intended recipient, you should
    delete this message.
    Any disclosure, coping, distribution or taking any action based on this
    message is strictly prohibited.

  • Macbook crash when trying to autorize user with system admin account  in maverick

    macbook crash when trying to autorize user with system admin account  in maverick,
    Please help

    Hi Frank,
    Please refer to following operations and check if can help you.
    1.
    wmic /node:"HOSTNAME" /user:"ADMIN_USER" /password:"PASSWORD" logicaldisk
    Please replace HOSTNAME with IP address, then monitor the result.
    2. Please open Control Panel, select User Accounts and click Manage another account. Then select the user account which you will use in WMIC command. Then please select Change
    the account type and check if you have set it as Administrator. If no, please set it as Administrator and check if this issue still persists.
    3. Please refer to the following thread and check if can help you.
    WMI
    Remote "Access Denied"
    If this issue still persists, please let me know the edition information of Windows OS that this issue occurred
    in. Meanwhile, you described “The user account is a member of Administrators.” Would you please let me summarily know how operate?
    Hope this helps.
    Best regards,
    Justin Gu

  • Can't create user with Delegated Administrator Console! Thank you!

    I have installed JES2005Q4 (include Deirectory Server、Access Manager、Web Server、Messaging Server、Calendar Server、Instant Messaging、Communications Express and Delegated Administrator) ,
    i can create domain and user with "commadmin" command, but can't create user with Delegated Administrator console.
    When i checked the logs of the Web Server, found some errors:
    [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: ApplicationDispatcher[da] WEB2649: Servlet.service() for servlet jsp threw exception
    javax.servlet.ServletException
         at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:536)
         at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:559)
         at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
         at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
         at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
         at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:471)
         at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:382)
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:340)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    ----- Root Cause -----
    javax.servlet.jsp.JspException
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCW
    [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: WEB2798: [da] ServletContext.log(): [ERROR] Uncaught application exception
    com.iplanet.jato.NavigationException: Exception encountered during forward
    Root cause = [javax.servlet.jsp.JspException]
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    Root cause:
    javax.servlet.jsp.JspException
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCWizardTag.java:658)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getHTMLStringInternal(CCWizardTag.java:469)
         at com.sun.web.ui.taglib.common.CCTagBase.doEndTag(CCTagBase.java:114)
         at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:260)
         at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
         at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
         at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
         at org.apache.catalina.co
    [04/Feb/2006:11:55:26] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: StandardWrapperValve[WizardWinServlet]: WEB2792: Servlet.service() for servlet WizardWinServlet threw exception
    javax.servlet.ServletException: Uncaught exception
         at com.iplanet.jato.ApplicationServletBase.onUncaughtException(ApplicationServletBase.java:1415)
         at com.sun.comm.da.WizardWinServlet.onUncaughtException(WizardWinServlet.java:98)
         at com.iplanet.jato.ApplicationServletBase.fireUncaughtException(ApplicationServletBase.java:1164)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:639)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    ----- Root Cause -----
    com.iplanet.jato.NavigationException: Exception encountered during forward
    Root cause = [javax.servlet.jsp.JspException]
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain

    Now i want to update the Delegated Administrator with the 119778-09.jar patch, but the error show:
    Unable to open keystore </var/sadm/security/patchadd/trustore> for reading.
    Signature invalid on signed patch <119778-09>.

  • Error occured while searching for users in OIM admin console.

    Hi Experts,
    I deployed code from dev environment in to Test environment using deployment manager in OIM and also completed metadata import using weblogic metadataimport utility.Then when itried to search for users in OIM admin console. I am getting the following error.
    Error messager:
    ADFC-10001: cannot instantiate class 'oracle.iam.identitytaskflow.backing.taskflows.modifyuser.ModifyUserView'
    ADF_FACES-60097:For more information, please see the server's error log for an entry beginning with: ADF_FACES-60096:Server Exception during PPR, #12
    Did any body faced this issue?
    Can u please suggest me on this?
    Thanks,
    Sri.

    I've faced same error !!

  • Creating users via the admin console

    Hi,
    I'm trying to create a user via the admin console. The user will have to
    authenticate via Membership, and will require a username and password.
    However, when creating the user via the admin console it does not allow you
    to specify a default password (or by using the command line 'ipsadmin create
    user /domain/user.xml', unless there is some XML field specified in the file
    to do that? If so, what is it? Specify an attribute in the
    "iwtAuthMembership-password"?) After creating a user via the console, I
    tried logging in using a blank password and a password the same as the
    username, but neither worked. Is this password set as default to something,
    and if so to what?
    Also, is there some existing means for a user who has already created a
    membership account to change their password? If not, then I guess I will
    have to develop some code to modify the "iwtAuthMembership-password"
    attribute.
    Thanks,
    Mark

    Hi,
    After you have created the user via the console, then the user will be added to a particular role.From the console go that particular domain and then to the role under which the user was created.Then select the Users link you can see the users list.From that list select the user for whom a password is needed,then it will lead you to a screen where you can see a link named Authentication.Expand that link and click on the Membership link there you can enter the username and password for the user

  • What web service & xml will be used for deleting the packged epub/pdf file from Admin Console

    What web service & xml will be used for deleting the packged epub/pdf file from Admin Console?
    I am able to delete the files from Admin console directy but not able to get which web service is calling on deleting the file from admin console:
    Mangal

    Hi Jim,
    I tired following web service and xml to delete the packaged ebook but it is giving me error instead of response:
    Web Service & XML
    http://myserver_url/admin/ManageResourceKey
    <request action="delete" auth="builtin" xmlns="http://ns.adobe.com/adept">
    <nonce>" . $nonce . "</nonce>
    <expiration>'. $expiration .'</expiration>
    <resourceKey>
    <resource>resource_id</resource>
    <resourceItem>1</resourceItem>
    </resourceKey>
    </request>
    Error Message
    <error xmlns="http://ns.adobe.com/adept"
    data="E_ADEPT_DATABASE http://myserver_url/admin/ManageResourceKey
    Cannot%20delete%20or%20update%20a%20parent%20row:%20a%20foreign%20key%20constraint%20fails %20(`adept`.`distributionrights`,%20CONSTRAINT%20`distributionrights_ibfk_2`%20FOREIGN%20K EY%20(`resourceid`)%20REFERENCES%20`resourcekey`%20(`resourceid`))"/>
    Magal Varshney

  • Log in user with parameter

    Dear Sir….
    How can I Macke log in user if success to page with
    parameter.
    I have DW SC4
    Your reply it’s highly appreciates.
    Regards;

    Please your help.

  • Problem deleting users with delegated admin

    Hello,
    I seem to be having a problem deleting users with delegated administrator. I am using JES 2005Q4.
    Here is what I do:
    I set Inetuserstatus and mailuserstatus to deleted. Then run msuserpurge to delete the mail box. This seems to be working fine. Then I do a commadmin domain purge and it will actually delete the persons ldap record, but it does not delete the o=pab records or the o=PIserverDB records.
    I am probably missing a step here, and would apprecidate it somebody could point me in the right direction.
    Thanks,
    Gary

    DA patches:
    119777-10 most current release for Solaris
    119778 for X86
    119779 for Linux
    118540-23 Communication Express Solaris Sparc
    118541 X86
    118542 Linux
    118207-42 Messaging core Solaris sparc
    118208 X86
    118209 Linux
    116574-02 Veritas Vcsha (sparc only)
    118242-03 and 118245-03 Dssetup sparc
    118243 and 118246 X86
    118247 Linux
    122018-02 Outlook Connector
    (all the currently released patches. Most have t-patches available from tech support post the above numbers)

  • Network User with Local Admin Privileges?

    I have a small network (around 25 clients total) that was setup prior to my arrival. Each client has its own unique local admin (each machine was setup by the individual user) and it's become somewhat daunting to support them.
    All of the machines are connected (but not specifically bound) to an Open Directory and each is accessible via Remote Desktop, however I cannot push software updates, etc. without local admin privileges.
    I'd rather not create an account on each machine, nor do I want to completely lock down each computer (I'd like them to still have the flexibility to be admins so they can install apps, etc.)
    Is it possible to authenticate against OD and obtain local admin privileges?

    Yes.
    You can wipe all account information and then recreate a common initial admin account. This will make administration far easier as all machines will have the same admin username/password combination. Next, bind all of the systems to the domain and create domain accounts for all users on the server (likely already exist). Log in as the domain accounts and migrate permissions to domain ids. Finally, promote the user to the local admin group through System Preferences > Accounts on the workstation. You must enable the account as a mobile account in Workgroup Manager first. If you do not, the account will not cache to the workstation and you will be unable to add it to the admin group.
    Also, in a workgroup of 25, I would recommend rethinking the decision to grant local admin access to end users. This is asking for trouble as you will have no control over when updates are applied or even if they are. In theory (and probably in practice), you will have 25 completely different machines configurations. This is far harder to manage and troubleshoot than 25 systems with different admin accounts.
    If you must provide some level of autonomy, while not trivial, you might want to consider modifying /etc/authorization and granting limited admin rights to the users.
    Hope this helps - congrats on the opportunity

  • Deployment Software on user with no admin rights

    Hello,
    We are using SCCM 2012 R2 and our environment machines are Windows 8.1 with no admin rights for all users.
    We are trying to deploy some sprecific software but with no luck.
    On the Deployment method we specify "Install for User" and what happens on User side is "Past due it will be retried".
    If I modify my script and instead of /qn I use /qb I have the UAC control that pops up.
    But from my understanding SCCM should install the software as system account.
    How can we do to make it work?
    Thank You,
    Chris

    Hello,
    I have already bypass my problem using the "install for system".
    Creating 2 deployment method. One for the application (msi) "Install for system" and the second for the settings (cmd) "Install for User" and it works like a charm.
    But there is no way for SSCM to elevate the privileges when installing an application with "Install for user" set?
    Chris

  • Users in the admin console

    I am trying to define granular access to the admin console to our developers. They
    want to see the deployment status for applications, however. Unless I add them
    to the Deployers group they cannot see it. I do not want them to have access to
    deploy or undeploy but I want them to be able to look at the application components
    and see if they are deployed etc.
    Are there any ACLs I can add to allow this? Any Roles or Policies?
    thanks
    Ryan

    "Ryan Richards" <[email protected]> wrote in message
    news:3f9ed1be$[email protected]..
    >
    I am trying to define granular access to the admin console to ourdevelopers. They
    want to see the deployment status for applications, however. Unless I addthem
    to the Deployers group they cannot see it. I do not want them to haveaccess to
    deploy or undeploy but I want them to be able to look at the applicationcomponents
    and see if they are deployed etc.
    Are there any ACLs I can add to allow this? Any Roles or Policies?
    In 8.1, mbean access is based on roles so there is not that level of
    granularity. You may be able
    to write a webapp or ejb that restricts access based on roles and policies
    and then performs
    a runas with an admin user to get the information from the mbeans.
    thanks
    Ryan

  • Troubles with the admin console

    I'm using SunOne Message Queue 3.0.1 on Windows (sorry...). I had been using both the broker and the graphical admin console for months, when, apparently for no reason, the console stopped working, that is, when I launch imqadmin.exe nothing happens (well, actually if I pay attention I can tell a dos shell opens and closes very quickly). If I launch it from the command line I only get the prompt back. I thought something might be misconfigured, and I unistalled/reinstalled the application several times, but the console behaviour hasn't changed so far. Does anyone have a clue what could cause the console not to work? Any help would be greatly appreciated.
    Thanks.

    imqadmin will inherit your current CLASSPATH setting.
    Can you check to see what you currently have set for CLASSPATH?
    It might be that some settings in your CLASSPATH is causing problems in imqadmin.
    Try setting your CLASSPATH to nothing.
    Then start up imqadmin.exe directly from the
    command prompt where you unset CLASSPATH.

  • How to add/invite users to your admin console

    I have read the FAQ regarding this but there is no option to invite users under the 'Admin Users' section as it states in the FAQ. I have WebBasics plan but it states I am allowed to have up to 3 users yet there is no way for me to invite these users. Also if I can not add any users is it possible to change my email for this account as I actually made the website for a client.

    Hi,
    The option should be located within the admin panel via Site settings -> admin users -> invite. 
    If you are not seeing this please provide the site so we can investigate. 
    Kind regards,
    -Sidney

Maybe you are looking for