WDA Best Practice for Coding

Similar Messages

• Best practices for coding in Exits

  Does anyone have any documents on the Dos and Don'ts in BADIs, Exits and SD routines from the angle of System performance and how to minimise the load. Iam not talking about the generic Optimisation documents but something specific to SD routines and general BADIs and Exits which fall under the Best practices (coding) of SAP. eg. One guideline from SAP is that Clients should not tamper with the 'x' variables (xvbak, xvbap etc.) in the SD form exits.
  Thanks,
  Madhavan

  Not sure why check is a problem in general however it reminds me on another tricky situation.
  For exampele there is a user-exit in CO-PA
       call customer-function '001'
             exporting
                  erkrs           = i_erkrs
                  ep_source       = <ls_ce1xxxx>
                  ep_source_bukrs = <gs_ce_bukrs>
                  exit_nr         = i_exit_nr
             importing
                  ep_target         = <ls_ce1xxxx>
                  ep_target_bukrs   = <gs_ce_bukrs>
                  e_bukrs_processed = l_bukrs_processed
                  et_field          = gt_field_user
             tables
                  gt_message_table = gt_message_table
             exceptions
                  others    = 1.
  as you can see <ls_ce1xxxx> is passed on ep_source and ep_target. If you have several clients but only one in which the user-exit should be active,  you usually encapsulate your coding like following.
  if sy-mandt = '100'.
    ep_target = <changed_values>.
  endif.
  But in this case you will learn that in every other client the values of ep_source will be cleared if you do not add a statement like ep_target = ep_source.
  before the if statement.
  Christian

• Best Practice for Use of ABAP in Customizing SRM and/or CRM

  I was wondering if there is a document that defines best practices for the use of ABAP with the installation and customization of SRM and/or CRM.   Such as amount of ABAP coding typically required, and best practices around the use of ABAP for customization and configuration.
  Thanks.

  Hi, Johnson
  Sorry, Please don't mind, you are not at right place to ask the Question like this
  Please read "The Forum Rules of Engagement" before posting!  HOT NEWS!!
  Thanks and Regards,
  Faisal

• Best practice for mouseless ADF applications

  I am developing an ADF application where the users do not want to use the mouse.
  So I would like to know if there are a best practice for this?
  I am already using the accessKey functionality and subforms defaultCommand
  But I have had problems setting focus to objects on a page like tables. I would like a button to return the focus to the table after it has made the command like delete.
  I have implemented a solution where I have found inspiration several threads and other webpages (see below).
  Is this solution okay?
  Are there any problems with it?
  I would also like to know if there are better pathways to go like
  out of the box solutions,
  http://www.oracle.com/technetwork/developer-tools/adf/learnmore/79-global-template-button-strategy-360139.pdf (are there an example implementation?), or
  http://one-size-doesnt-fit-all.blogspot.dk/2010/11/adf-ui-shell-supporting-global-hotkeys.html
  in advance thanks
  Inspiration webpages
  https://blogs.oracle.com/jdevotnharvest/entry/how_to_programmatically_set_focus
  http://technology.amis.nl/2008/01/04/adf-11g-rich-faces-focus-on-field-after-button-press-or-ppr-including-javascript-in-ppr-response-and-clientlisteners-client-side-programming-in-adf-faces-rich-client-components-part-2/
  how to Commit table by writting Java code in Managed Bean?
  Table does not refresh and getting error as UIComponent is Null
  A short description of the solution:
  (jdeveloper version 11.1.1.2.0)
  --- Example where I use onSetFocus in jsff page
  <af:commandButton text="#{hrsusuiBundle.FOCUS}" id="cb10"
  partialSubmit="true" accessKey="f"
  shortDesc="Alt+Shift+F"
  actionListener="#{managedBean_clientUtils.onSetFocus}">
  <af:clientAttribute name="focusField" value="t1"/>
  </af:commandButton>
  --- Examples where I use doTableActionAndSetFocus in jsff page
  --- There have to be a binding in the jsff page to delete, commit and rollback
  <af:commandButton text="#{hrsusuiBundle.DELETE}" id="cb4"
  accessKey="x"
  shortDesc="Alt+Shift+X"
  partialSubmit="true"
  actionListener="#{managedBean_clientUtils.doTableActionAndSetFocus}">
  <af:clientAttribute name="focusField" value="t1"/>
  <af:clientAttribute name="actionField" value="Delete"/>
  </af:commandButton>
  <af:commandButton text="#{hrsusuiBundle.COMMIT}" id="cb5"
  accessKey="s" shortDesc="Alt+Shift+S"
  partialSubmit="true"
  actionListener="#{managedBean_clientUtils.doTableActionAndSetFocus}">
  <af:clientAttribute name="focusField" value="t1"/>
  <af:clientAttribute name="actionField" value="Commit"/>
  </af:commandButton>
  <af:commandButton text="#{hrsusuiBundle.ROLLBACK}" id="cb6"
  accessKey="z" shortDesc="Alt+Shift+Z"
  partialSubmit="true"
  actionListener="#{managedBean_clientUtils.doTableActionAndSetFocus}"
  immediate="true">
  <af:resetActionListener/>
  <af:clientAttribute name="focusField" value="t1"/>
  <af:clientAttribute name="actionField" value="Rollback"/>
  </af:commandButton>
  --- This is the java class I use
  --- It is published in adfc-config.xml as a request scope managedbean
  public class ClientUtils {
  public ClientUtils() {
  public void doTableActionAndSetFocus(ActionEvent event) {
  RichCommandButton rcb = (RichCommandButton)event.getSource();
  String focusOn = (String)rcb.getAttributes().get("focusField");
  String actionToDo = (String)rcb.getAttributes().get("actionField");
  UIComponent component = null;
  String clientId = null;
  component = JSFUtils.findComponentInRoot(focusOn);
  clientId = component.getClientId(JSFUtils.getFacesContext());
  if ( "Delete".equals(actionToDo) || "Commit".equals(actionToDo) || "Rollback".equals(actionToDo) ){
  BindingContainer bindings = BindingContext.getCurrent().getCurrentBindingsEntry();
  OperationBinding operationBinding = bindings.getOperationBinding(actionToDo);
  Object result = operationBinding.execute();
  AdfFacesContext.getCurrentInstance().addPartialTarget(component);
  if (clientId != null) {           
  makeSetFocusJavaScript(clientId);
  public static String onSetFocus(ActionEvent event) {
  RichCommandButton rcb = (RichCommandButton)event.getSource();
  String focusOn = (String)rcb.getAttributes().get("focusField");
  String clientId = null;
  if (focusOn.contains(":")) {
  clientId = focusOn;
  } else {
  clientId = findComponentsClientIdInRoot(focusOn);
  if (clientId != null) {           
  makeSetFocusJavaScript(clientId);
  return null;
  private static void writeJavaScriptToClient(String script) {
  FacesContext fctx = FacesContext.getCurrentInstance();
  ExtendedRenderKitService erks = null;
  erks = Service.getRenderKitService(fctx, ExtendedRenderKitService.class);
  erks.addScript(fctx, script);
  public static void makeSetFocusJavaScript(String clientId) {
  if (clientId != null) {
  StringBuilder script = new StringBuilder();
  //use client id to ensure component is found if located in
  //naming container
  script.append("var textInput = ");
  script.append("AdfPage.PAGE.findComponentByAbsoluteId");
  script.append ("('"+clientId+"');");
  script.append("if(textInput != null){");
  script.append("textInput.focus();");
  script.append("}");
  writeJavaScriptToClient(script.toString());
  public static String findComponentsClientIdInRoot(String id) {
  UIComponent component = null;
  String clientId = null;
  component = JSFUtils.findComponentInRoot(id);
  clientId = component.getClientId(JSFUtils.getFacesContext());
  return clientId;
  }

  Hi,
  I am developing an ADF application where the users do not want to use the mouse. So I would like to know if there are a best practice for this?
  Well HTML (and this is the user interface you see) follows a tab index navigation that you follow with "tab" and "shift+tab". Anything else is a short cut for which you use mnemonics (as you already do) or shortcuts (explained in http://one-size-doesnt-fit-all.blogspot.dk/2010/11/adf-ui-shell-supporting-global-hotkeys.html). There is a distinction to make between non-web environments (which I think you and your users have abackground in) and client desktop environments. Browsers block some keyboard functionality for their own purpose. So you may have to find a list of keys first that work across browsers. Unlike desktop clients, which allow you to "press a button" without the button to take focus, this cannot be done on the web. So you need to be clever here, avoiding buttons at all.
  The following paper is about JavaScript in ADF and explains the basics for what Chris Muir explains in : http://one-size-doesnt-fit-all.blogspot.dk/2010/11/adf-ui-shell-supporting-global-hotkeys.html
  http://www.oracle.com/technetwork/developer-tools/jdev/1-2011-javascript-302460.pdf
  It has the outline for how to register short cut keys that perform a specific action (e.g. register ctrl+d to delete the current row you are on, or press F11 to execute a query (similar to Oracle Forms frmres files)). However, be aware that this includes some code you have to write (actually quite some code to be honest).
  http://www.oracle.com/technetwork/developer-tools/adf/learnmore/79-global-template-button-strategy-360139.pdf (are there an example implementation?), or
  http://one-size-doesnt-fit-all.blogspot.dk/2010/11/adf-ui-shell-supporting-global-hotkeys.html
  Actually these are implementations as they come with example code for you to use and customize, do they? So what is this question asking for more ? Also note that global buttons don't quite have anything in common with the question you asked. I assume you want to see it as an implementation of the Forms toolbar that operates on the form or table the focus is in. This however does not work for the web as there is nothing that keeps track of which component has a focus and to what iterator (data block) it belongs. This would involve even more coding (though possibly doable)
  Frank

• Best Practice for Extracting a Single Value from Oracle Table

  I'm using Oracle Database 11g Release 11.2.0.3.0.
  I'd like to know the best practice for doing something like this in a PL/SQL block:
  DECLARE
      v_student_id    student.student_id%TYPE;
  BEGIN
      SELECT  student_id
      INTO    v_student_id
      FROM    student
      WHERE   last_name = 'Smith'
      AND     ROWNUM = 1;
  END;
  Of course, the problem here is that when there is no hit, the NO_DATA_FOUND exception is raised, which halts execution.  So what if I want to continue in spite of the exception?
  Yes, I could create a nested block with EXCEPTION section, etc., but that seems clunky for what seems to be a very simple task.
  I've also seen this handled like this:
  DECLARE
      v_student_id    student.student_id%TYPE;
      CURSOR c_student_id IS
          SELECT  student_id
          FROM    student
          WHERE   last_name = 'Smith'
          AND     ROWNUM = 1;
  BEGIN
      OPEN c_student_id;
      FETCH c_student_id INTO v_student_id;
      IF c_student_id%NOTFOUND THEN
          DBMS_OUTPUT.PUT_LINE('not found');
      ELSE
          (do stuff)
      END IF;
      CLOSE c_student_id;   
  END;
  But this still seems like killing an ant with a sledge hammer.
  What's the best way?
  Thanks for any help you can give.
  Wayne

  Do not design in order to avoid exceptions. Do not code in order to avoid exceptions.
  Exceptions are good. Damn good. As it allows you to catch an unexpected process branch, where execution did not go as planned and coded.
  Trying to avoid exceptions is just plain bloody stupid.
  As for you specific problem. When the SQL fails to find a row and a value to return, what then? This is unexpected - if you did not want a value, you would not have coded the SQL to find a value. So the SQL not finding a value is an exception to what you intend with your code. And you need to decide what to do with that exception.
  How to implement it. The #1 rule in software engineering - modularisation.
  E.g.
  create or replace function FindSomething( name varchar2 ) return foo.col1%type is
    id foo.col1%type;
  begin
    select col1 into id from foo where col2 = upper(name);
    return( id );
  exception when NOT_FOUND then
    return( null );
  end;
  And that is your problem. Modularisation. You are not considering it.
  And not the only problem mind you. Seems like your keyboard has a stuck capslock key. Writing code in all uppercase is just as bloody silly as trying to avoid exceptions.

• Best Practice for Servlets

  I guess I'm asking for most peoples' input on what I'm planning to do here ....
  Here's what I want to do, and know a bit about.
  o I want to make a servlet that serves only XML.
  o After that, I want to transform the XML into web pages, RSS feeds etc.. using XSLT.
  Here's what I'm not so sure about...
  o How should I implement the interface to the web-based aspects? Should the servlet be coded to display HTML pages on "GET" requests? Or should I use a pile of HTML files to make forms?
  o What do I use to perform the XSLT transformations? Where should the set of solutions be placed relative to my servlet? Would a user then access this solution rather than the servlet itself?
  o How do I code the servlet on one machine, and then test it on another without breaking the libraries? How do I set up any libraries I might have to use (like for XSLT transformations) on the server?
  Any other advice here? I'm sure this is done often, but I can't find a resource that explains the best practices for it all.
  I know this sounds like a lot of stupid questions. I've had lots of programs working with Java before, but I'm at a loss as to how I'm supposed to package libraries I use in my programs - moreso with a servlet. To make matters worse, I plan on using MySQL as the database.
  If there's some wizard on the forums here who's willing to say more than just "RTFM" (of which there is none to answer my questions together as one), I'd be very very happy ":^)

  Let me re-pose my question so as to be specific
  enough to not be picked apart in my answer.
  I want to FIRST AND FOREMOST, create a servlet that
  serves up XML based on parameters given to it (how?
  who cares.).What does "serves up XML" mean?
  Let's be precise. Do you intend the servlet to send the XML back to the client? Or is the XML an intermediate step in your processing? (Yes, it matters.)
  Then, I want to create interfaces (HTML, RSS,
  boogledeedoo) to this XML data by having either JSP,
  another servlet or insert something else here,
  transform the XML into whatever the desired format
  is."interface" is a loaded term in Java. What do you mean by it?
  >
  My assumption is that I'll make the servlet that is
  capable of outputting my desired XML data and then
  create another servlet that will poke it for data as
  needed to transform the XML into HTML. This servlet
  would also likely serve as the web site itself and
  would manage user logins etc...(persistance yaddy
  yadda)You're not thinking about this properly.
  "yadda yadda" == muddled thinking.
  My other assumption is that I'll make another servlet
  that will poke the XML servlet and transform that
  into RSS or anything else I can dream up.How does "poke the XML servlet" fit into the request/response protocol that is HTTP? Please explain.
  -=-!REASONING!-=-
  Previously, when I was working with PHP, I liked to
  make scripts that would display interfaces and post
  to themselves. OK, now I see. "interface" == GUI in a browser to you. Very good.
  You can create a JSP that is an interface. You can have that JSP submit the HTTP POST or GET request to itself. No problem there, as long as "itself" knows what to do with the request.
  It was a nice way of creating a
  complete little package. Everything for one function
  was encapsulated nicely under one roof. No excessive
  HTML files all over the place to nurture.A simple problem, a simple solution. You can do that with a JSP.
  Look. Part of my inability to describe this well is
  because I DO feel like I'm in a lot of directions at
  once. Or you don't understand the technology very well.
  But I have to be in order to pull together
  some sort of plan for myself. I understand many
  concepts and have just finished studying object
  oriented design etc..."Just finished"? How long did it take?
  I know things about how Tomcat does connection
  pooling for SQL connections.Great. Not much to understand there. It's harder to figure out how to do n-tier apps with more than one page well.
  I do know how to use Google, probably a lot better
  than most. But rest assured, I've yet to find a
  little guide as complete as any of the "LAMP" books
  there are out there. Which by the way, I have never
  purchased.That's because Java Enterprise Edition isn't intended for little problems. LAMP is. Maybe the limitation is that you are used to "little" problems and not bigger ones.
  If JEE seems scattered and complex, it's because it is. It encompasses more than LAMP.
  I'm confident in good guidance, and not a heartfelt
  smackdown. I'm still waiting for some clear suggestions.I gave you one, you just didn't know it: go read about Spring.
  http://www.springframework.org
  It'll help you structure complex apps from the user interface to the database in the back.
  You're welcome.
  %

• What is the best practice for AppleScript deployment on several machines?

  Hi,
  I am developing some AppleScripts for my colleagues at work and I don't want to visit each of them to deploy my AppleScript on their Macs.
  So, what is the best practice for AppleScript deployment on several machines?
  Is there an installer created by the Automator available?
  I would like to have something like an App to run which puts all my AppleScript relevant files into the right place onto a destination Mac.
  Thanks in advance.
  Regards,

  There's really no 'right place' to put applescripts.  folder action scripts nees to go in ~/Library/Scripts/Folder Action Scripts (or /Library/Scripts/Folder Action Scripts), anything you want to appear in the script menu needs to go in ~/Library/Scripts (or /Library/Scripts), script applications should probably go in the Applications folder, but otherwise scripts can be placed anywhere.  conventional places to put them are in ~/Library/Scripts or in a subfolder of ~/Library/Application Support if they are run by an application.  The more important issue is to make sure you generalize the scripts: use the path to command to get local paths rather than hard-coding them in, make sure you test to make sure applications or unic executables you call are present ont he machine, use script bundles rather tna scripts if you scripts have private resources.
  You can write a quick installer script if you want to make sure scripts go where you want them.  Skeleton verion looks like this:
  set scriptsFolder to path to scripts folder from user domain
  set scriptsToExport to path to resource "xxx.scpt" in directory "yyy"
  tell application "Finder"
    duplicate scriptsToExport to scriptsFolder with replacing
  end tell
  say "Scripts are installed"
  save this as a script application, then open the application pacckage and create a folder called "yyy" in the resources folder and copy your script "xxx.scpt" into it.  other people can run the app to install the script.

• Best practices for setting up users on a small office network?

  Hello,
  I am setting up a small office and am wondering what the best practices/steps are to setup/manage the admin, user logins and sharing privileges for the below setup:
  Users: 5 users on new iMacs (x3) and upgraded G4s (x2)
  Video Editing Suite: Want to connect a new iMac and a Mac Pro, on an open login (multiple users)
  All machines are to be able to connect to the network, peripherals and external hard drive. Also, I would like to setup drop boxes as well to easily share files between the computers (I was thinking of using the external harddrive for this).
  Thank you,

  Hi,
  Thanks for your posting.
  When you install AD DS in the hub or staging site, disconnect the installed domain controller, and then ship the computer to the remote site, you are disconnecting a viable domain controller from the replication topology.
  For more and detail information, please refer to:
  Best Practices for Adding Domain Controllers in Remote Sites
  http://technet.microsoft.com/en-us/library/cc794962(v=ws.10).aspx
  Regards.
  Vivian Wang

• Best-practice for Catalog Views ? :|

  Hello community,
  A best practice question:
  The situtation: I have several product categories (110), several items in those categories (4000) and 300 end-users.    I would like to know which is the best practice for segment the catalog.   I mean, some users should only see categories 10,20 & 30.  Other users only category 80, etc.    The problem is how can I implement this ?
  My first idea is:
  1. Create 110 Procurement Catalogs (1 for every prod.category).   Each catalog should contain only its product category.
  2. Assign in my Org Model, in a user-level all the "catalogs" that the user should access.
  Do you have any idea in order to improve this ?
  Saludos desde Mexico,
  Diego

  Hi,
  Your way of doing will work, but you'll get maintenance issues (to many catalogs, and catalog link to maintain for each user).
  The other way is to built your views in CCM, and assign these views to the users, either on the roles (PFCG) or on the user (SU01). The problem is that with CCM 1.0 this is limitated, cause you'll have to assign one by one the items to each view (no dynamic or mass processes), it has been enhanced in CCM 2.0.
  My advice:
  -Challenge your customer about views, and try to limit the number of views, with for example strategic and non strategic
  -With CCM 1.0 stick to the procurement catalogs, or implement BADIs to assign items to the views (I experienced it, it works, but is quite difficult), but with a limitated number of views
  Good luck.
  Vadim

• Best Practice for Securing Web Services in the BPEL Workflow

  What is the best practice for securing web services which are part of a larger service (a business process) and are defined through BPEL?
  They are all deployed on the same oracle application server.
  Defining agent for each?
  Gateway for all?
  BPEL security extension?
  The top level service that is defined as business process is secure itself through OWSM and username and passwords, but what is the best practice for security establishment for each low level services?
  Regards
  Farbod

  It doesnt matter whether the service is invoked as part of your larger process or not, if it is performing any business critical operation then it should be secured.
  The idea of SOA / designing services is to have the services available so that it can be orchestrated as part of any other business process.
  Today you may have secured your parent services and tomorrow you could come up with a new service which may use one of the existing lower level services.
  If all the services are in one Application server you can make the configuration/development environment lot easier by securing them using the Gateway.
  Typical probelm with any gateway architecture is that the service is available without any security enforcement when accessed directly.
  You can enforce rules at your network layer to allow access to the App server only from Gateway.
  When you have the liberty to use OWSM or any other WS-Security products, i would stay away from any extensions. Two things to consider
  The next BPEL developer in your project may not be aware of Security extensions
  Centralizing Security enforcement will make your development and security operations as loosely coupled and addresses scalability.
  Thanks
  Ram

• Best practice for multi-language content in common areas

  I've got a site with some text in header/footer/nav that needs to be translated between an English and Spanish site, which use the same design. My intention was to set up all the text as content to facilitate. However, if I use a standard dialog with the component's path set to a child of the current page node, I would need to re-enter the text on every page. If I use a design dialog, or a standard dialog with the component's path set absolutely, the Engilsh and Spanish sites will share the same text. If I use a standard dialog with the component's path set relatively (eg path="../../jcr:content/myPath"), the pages using the component would all need to be at the same level of the hierarchy.
  It appears that the Geometrixx demo doesn't address this situation, and leaves copy in English. Is there a best practice for this scenario?

  I'm finding that something to the effect of <cq:include path="<%= strCommonContentPath + "codeEntry" %>" resourceType ...
  works fine for most components, but not for parsys, or a component containing a parsys. When I attempt that, I get a JS error that says "design.path is null or not an object". Is there a way around this?

• Best Practice for utility in Sol Man 4.0

  We have software component ST-ICO of release 150_700 with Patch level 5
  We want a Template Selection for ‘Utility’ industry. I checked in
  the service market place and found that 'Baseline Package United
  Kingdom V1.50, Template: BP_BLKU150' is available in the above software
  component.
  But we are not getting any templates other than 'BP_UTUS147 - Best Practices for Water Utility' in the 'SOLAR_PROJECT_ADMIN'
  transaction.
  Kindly suggest any patch needs to be applied or some configuration need to be done.
  Regards
  Mani

  Hi Mani,
     Colud u plz give me the link of "where u find the template BP_BLKU150"?
  It will be helpful for me.
  Thanks
  Senthil

• Best Practices for SRM Installation !!

  Hi
      can someone share the best Practices for SRM Installation ?
  What is the typical timeframe to install SRM on development server and as well as on the Production server ?
  Appericiate the responses
  Thanks,
  Arvind

  Hi
  I don't know whether this will help you.
  See these links as well.
  <b>http://help.sap.com/bp_epv170/EP_US/HTML/Portals_intro.htm
  http://help.sap.com/bp_scmv150/index.htm
  http://help.sap.com/bp_biv170/index.htm
  http://help.sap.com/bp_crmv250/CRM_DE/index.htm</b>
  Hope this will help.
  Please reward suitable points.
  Regards
  - Atul

• Best practices for ARM - please help!!!

  Hi all,
  Can you please help with any pointers / links to documents describing best practices for "who should be creating" the GRC request in below workflow of ARM in GRC 10.0??
  Create GRC request -> role approver -> risk manager -> security team
  options are : end user / Manager / Functional super users / security team.
  End user and manager not possible- we can not train so many people. Functional team is refusing since its a lot of work. Please help me with pointers to any best practices documents.
  Thanks!!!!

  In this case, I recommend proposing that the department managers create GRC Access Requests.  In order for the managers to comprehend the new process, you should create a separate "Role Catalog" that describes what abilities each role enables.  This Role Catalog needs to be taught to the department Managers, and they need to fully understand what tcodes and abilities are inside of each role.  From your workflow design, it looks like Role Owners should be brought into these workshops.
  You might consider a Role Catalog that the manager could filter on and make selections from.  For example, an AP manager could select "Accounts Payable" roles, and then choose from a smaller list of AP-related roles.  You could map business functions or tasks to specific technical roles.  The design flaw here, of course, is the way your technical roles have been designed.
  The point being, GRC AC 10 is not business-user friendly, so using an intuitive "Role Catalog" really helps the managers understand which technical roles they should be selecting in GRC ARs.  They can use this catalog to spit out a list of technical role names that they can then search for within the GRC Access Request.
  At all costs, avoid having end-users create ARs.  They usually select the wrong access, and the process then becomes very long and drawn out because the role owners or security stages need to mix and match the access after the fact.  You should choose a Requestor who has the highest chance of requesting the correct access.  This is usually the user's Manager, but you need to propose this solution in a way that won't scare off the manager - at the end of the day, they do NOT want to take on more work.
  If you are using SAP HR, then you can attempt HR Triggers for New User Access Requests, which automatically fill out and submit the GRC AR upon a specific HR action (New Hire, or Termination).  I do not recommend going down this path, however.  It is very confusing, time consuming, and difficult to integrate properly.
  Good luck!
  -Ken

• Best Practices For Household IOS's/Apple IDs

  Greetings:
  I've been searching support for best practices for sharing primarily apps, music and video among multple iOS's/Apple IDs.  If there is a specific article please point me to it.
  Here is my situation: 
  We currently have 3 iPads (2-kids, 1-dad) in the household and one iTunes account on a win computer.  I previously had all iPads on single Apple ID/credit card and controlled the kids' downloads thru the Apple ID password that I kept secret.  As the kids have grown older, I found myself constantly entering my password as the kids increased there interest in music/apps/video.  I like this approach because all content was shared...I dislike because I was constantly asked to input password for all downloads.
  So, I recently set up an individual account for them with the allowance feature at iTunes that allows them to download content on their own (I set restrictions on their iPads).  Now I have 3 Apple IDs under one household.
  My questions:
  With the 3 Apple IDs, what is the best way to share apps,music, videos among myself and the kids?  Is it multiple accounts on the computer and some sort of sharing? 
  Thanks in advance...

  Hi Bonesaw1962,
  We've had our staff and students run iOS updates OTA via Settings -> Software Update. In the past, we put a DNS block on Apple's update servers to prevent users from updating iOS (like last fall when iOS 7 was first released). By blocking mesu.apple com, the iPads weren't able to check for or install any iOS software updates. We waited until iOS 7.0.3 was released before we removed the block to mesu.apple.com at which point we told users if they wanted to update to iOS 7 they could do so OTA. We used our MDM to run reports periodically to see how many people updated to iOS 7 and how many stayed on iOS 6. As time went on, just about everyone updated on their own.
  If you go this route (depending on the number of devices you have), you may want to take a look at Caching Server 2 to help with the network load https://www.apple.com/osx/server/features/#caching-server . From Apple's website, "When a user on your network downloads new software from Apple, a copy is automatically stored on your server. So the next time other users on your network update or download that same software, they actually access it from inside the network."
  I wish there was a way for MDMs to manage iOS updates, but unfortunately Apple hasn't made this feature available to MDM providers. I've given this feedback to our Apple SE, but haven't heard if it is being considered or not. Keeping fingers crossed.
  Hope this helps. Let us know what you decide on and keep us posted on the progress. Good luck!!
  ~Joe