Wwsec_api add or modify portal user problem

Similar Messages

• Create or Edit Portal User Problem...

  I'm Trying to Edit a User in Portal R2 but it takes a lot of time to show the user properties any time that I want to see it.
  I'm using web cache and it's active but it seems like it doesn't work.
  Does any one Know how to fix this problem?

  Jose,
  and on top of all of this trouble you sent your question to the wrong forum ;-(
  Please post this question on one of the Portal forums here on OTN.
  Frank

• Portal user problem

  Hi All,
  I find that only the user accounts in OID directory 'cn=USERS,dc=domain,dc=com' can access OASPortal,but now my business users are in other OID directory(o=myorg,dc=domain,dc=com),how can I resove it?Need ur instruction.
  Thanks in advance.
  Regards.

  Add that container to the user search base in the Configuration section of OIDDAS (http://infrastrcuture.com/oiddas)

• Activating Portal Users

  Hi,
  I am working with the private APIs to add SSO and Portal Users. I have created users and am able to log into the portal. Even though I activate the portal users in my portlet, they are not added to the PORTAL30.PERSON$ table until after the users' first login. I have been unable to edit users' profiles programmatically since they don't exist in the table. Is there a way that I could programmatically log new users in so they are truly activated?
  Thanks,
  Judy

  Hi Michael,
  Thanks for the assistance. I think there are a few packages that have activate procedures and I don't know what they do. I was looking at portal30_sso.wwsso_auth_external.authenticate_user, portal30_sso.wwsso_auth_internal.authenticate_user, and
  portal30_sso.wwsso_api.authenticate_user. Hope that helps.
  Thanks,
  Judy
  Hi,
  we have used
  *)Re: Oracle 9i forms ( Adding User to Group Programatically? ) and
  *)Exercise 5.3 (Automatied Procedures to Create eXYZ Zsers and Groups) from the book : Oracle 9i
  Applicatio Server Portal Handbook (S. Vandivier, K. Cox, ORACLE/OSBORNE).
  BTW: Where have You found the "activate_user API"?
  Regards Michael

• Create user problem in portal 9ias release 2

  I have 9iAS release2 running. I am able to create new portal user. But when I try to create user using
  wwsso_app_user_mgr.create_user and wwsec_api.add_portal_user I get
  following error
  ora-06510: PL/SQL: unhandled user-defined exception
  Any idea why?
  How could I create portal user?
  I need to create user automatically through scripts.
  Thanks,
  Diego

  Diego,
  I have been working on this problem as well, that of creating users and assigning them to groups via pl/sql. What I have found is that non of the wwsec apis work. It appears that al user and group stuff need to be managed via the DBMS_LDAP package. There are examples of adding users in the DBMS_LDAP reference. Adding and removing from groups is a little harder to find info on, but there is an example out there by Erwan Lancien (Ithink) that I hae been able to get to work for my situation with minor changes.
  Try hitting this link for the discussion -> Re: FOREIGN KEY Constraint And Table Lock
  Hope this helps,
  Curt

• Abap+java abap-user and portal-role PROBLEM?? help

  We have the ABAP+java add-on install.
  The UME is by default ABAP engine.
  From Portal:
  1 I create a portal user, it ALWAYS creates ABAP user in ABAP engine.
  2. I create a portal role, it creates a role in the Portal.
  3. When I assign the user this portal role,
  having worksets and pages,
  I get no pages or worksets shown in the portal page as soon
  user logs in.
  Can you help configure this so that I could see the pages and iviews inside this workset when user logs in.
  Thanks  a lot.

  Hi Mike,
  You did right,
  Just check the Entry Point Property of your iView, page and workset to YES
  there are two radio buttons yes and no select the yes one,
  you can see your pages afte rlogin with the new user.
  Regards
  Abhimanyu L

• User to add favorites in Portal.

  Hi all,
  We have EP7.0 at our place.
  We have integrated SRM in ENETERRPISE PORTAL and users see all different menu in Portal as pe rthe roles assigned.
  Now for one of the roles,under "DETAILED NAVIGATION",users are able to see all transactions which are included for the corresponding role in SRM backend system.
  However the requirement now is to allow users to add transactions themselves under the link DETAILED NAVIGATION.
  How can this be achiveed??

  Hi Hema,
  Try this.
  Change the iView properties, these forces all BI reports to fire in EN,
  The setting in the iView of Application Parameters and set this to u201CLanguage=ENu201D.Then this Overrides the local setting of the Portal and forces a BW report to fire in EN.
  try this link :- Query in Portal User-Language-Independent
  Regards ,
  Sapbi3012.
  Edited by: Sapbi3012 on Jul 21, 2011 3:31 PM

• To add custom user attributes in portal user details

  Hi,
  I am looking at the possibility of adding custom user information attributes in User details of Portal User. By default there are few tabs provided ( general, account info, contact info, additional information.....). I am planning to have another extra tab (custom tab with some custom fields ) to be developed and accessible through external application. My data source would be AS database.
  Not necessary that the custom fields to be visible in the UI. but should be manipulated programatically.  
  Request inputs on feasibility and also the approach that could be followed.
  TIA,
  -Naresh

  Hi,
  Follow the link:
  http://help.sap.com/saphelp_nw70/helpdata/EN/44/0316d50bbe025ce10000000a1553f7/frameset.htm
  This explains the process of adding the custom attributes in user admin.
  Thanks,
  Rajani

• CCM BAT add user problem

  i want add User group .  Standard CCM End Users . But i can't use space . How can i add Standard CCM End Users to ccm ?

  Hi,
  From the error you have posted looks like you have some unallowed character in the Device name, please cross check the device name column one more time.
  Thanks,
  Anand

• Webdynpro - Check if a portal user has a user in R/3 Backend

  Hi Experts,
  i have following problem, and maybe some of you can help me out with an idea or (much better) a solution:
  Our Company is running an Enterprise Portal on NW2004s (SPS 18). Currently i am developing a Java WebDynpro Application for the portal called Transactionstarter. Withhin this application a portal user can simply add a backend System (R/3), a transaction and a Description. This information will be stored in a xml file in userhome in KM. When the user clicks the description, SAP WinGui will open with the transaction he defined before. We use SSO for opening the transaction if the user has a backend user. If not, the loginscreen of the backend will appear.
  All this works fine.
  Now we have the requirement for an automated system check.
  The portal user can run an initial system check. This system check should check all configured backend systems if the portal user has a user in R/3 backend.
  But how can i check if my portal user exists in backend?
  I cannot use JCO because we have a lot of Systems (more than 300 all together) and i don´t want to create a destination for every system. Or did i misunderstood something with JCO?
  Does anyone of you have a solution, how i can check every system, if the portal user has also a backend user?
  Thanks in advance.
  Regards
  Pascal

  Hi Pascal,
  with JCO you can use also the method JCO.createClient:
  public static JCO.Client createClient(java.lang.String client,
                                        java.lang.String user,
                                        java.lang.String passwd,
                                        java.lang.String lang,
                                        java.lang.String mshost,
                                        java.lang.String r3name,
                                        java.lang.String group)
  Creates an instance of a client connection to a remote SAP system (with load balancing)
  Parameters:
  client - SAP logon client
  user - SAP logon user
  passwd - SAP logon password
  lang - SAP logon language
  mshost - Host name of the message server
  r3name - Name of the SAP system
  group - Name of the group of application servers
  Returns:
  the newly created client
  for connections to other systems. So you can avoid to create destinations
  Regards
  Matteo
  Edited by: Matteo Fusi on Apr 1, 2009 11:33 AM

• New Portal User options are disabled when trying to create a new User

  Hi All,
  I am trying to create a new portal user profile using the administrator login. While doing that, I am getting all the options ( used to create the new user ) as disabled. Can anybody let me know the reason & solution of such a problem.
  or
  Anyone can provide me the document on how to create the new profile on portal. Thanks.
  Best Regards,
  Chander Kararia
  Edited by: Chander Kararia on Jan 15, 2009 7:26 AM

  Hi Chander,
  I just want to know if you are able to modify the attributes of an existing user. If not then you have been assigned the User Admin role (read only). Please check that. If yes then revert.
  Regards.
  Rajat

• Creating portal users with owner privileges?

  Hello,
  I need to let local adminstrators create users in the portal.
  This is based on instance-specific privileges, not global.
  Setting them to 'owners' of the group in the portal should let them add users.
  Once created and I log in as one of them I do not have the privileges of being an
  'owner', eventhough it's visible in the portal that I am an owner.
  Anybody?
  /

  Hi,
  To make the problem a little clearer.
  I want to have "local adminstrators" that can manage portal users i.e; delete, insert and update portal users.
  However I do not want these "local administrators" to be "Full administrators"- too dangerous.
  The "local adminstrators" should belong to the same group as the users they are set to administer. The
  only difference between a "local administrator" and a user of a group is that the "local administrator" have privileges
  to manage the other users of the group. If I have understood the concept right an owner have these privileges.
  I made them owners of the group, but this did not enable them to manage users.
  This must be a rather common approach, to have some users being able to administer other users without being a fullfledge DBA.
  Right now I'm looking into mapping them(the local administrators) to a different database schema with rights to manage users.
  I realize that to map them to another schema, then the checkbox "Use this schema for Portal Users" have to be checked when creating the
  schema. How do I check if this was checked and if it wasn't checked can I alter it now?
  Another thought is to dynamically upon meeting certain conditions making them Full Administrators, then after finishing the task
  reinstating them as normal users.. but this.. well hmm
  Thanks.
  /

• How to map Portal User groups to a MDM System?

  Hi,
  Have anyone tried mapping portal user group to a MDM System?
  The idea is to avoid each user to do user mapping for MDM of their own.
  When i look into the usermapping section of a portal user group, it shows me a message -
  "There are no systems available for user mapping for the selected principal"
  Thanks and best regards,
  Arun prabhu S

  Hi All,
  Got it!
  1. Create portal users,
  2. Create a portal user group,
  3. Assign Users to User group,
  4. Go to System Administration, edit permission of the MDM system, add the user group to the MDM system permission list and save
  5. Go to User Management, modify the user grooup, go to the User mapping of the user group and do mapping for MDM system and user group using a valid MDM User name and password and Save
  6. In User Management, modify the Portal role for MDM , add the user group to the role and save
  7. Edit permission of the role object, add the user group to the permission list and save
  Result:
  All the users assigned to the user group will be able to access MDM information on the portal correspond to the MDM mapping done at the user group level. This avoids self user mapping in personalization link.
  Best regards,
  Arun prabhu S

• Create a portal user with a specific Organizational Unit in the OID??

  I would like to split my portal users by Organizational Units in the OID.
  e.g.:
  ou=country1, cn=user1
  ou=country1, cn=user2
  ou=country2, cn=user3
  is it possible?
  is it possible trough the administer tab of Portal?
  Any experience ?
  feedback??
  Thanks
  Didier

  I think it is feasible.
  But not through Administer tab.
  Use your own api to add users (DBMS_LDAP.add_s + WWSEC_API.add_portal_user)
  cn=user1, ou=country1, cn=user_search_base
  cn=user2, ou=country2, cn=user_search_base
  or maybe try to change dynamically user_create_base, I don't know if it is possible or not

• Portal User Locked Hourly ..

  Hi,
  I have a very strange problem.
  Since a password change of the portal user "Administrator", this account is locked hourly.
  OS: W2k8
  DB: MSSQL 2k8
  SAP: Portal 7.00
  User: Administrator (UME)
  Portal IP: 192.168.1.1
  responses.trc
  [May 14, 2014 8:42:02 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 8:42:02 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 8:42:03 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 8:42:03 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 9:42:01 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 9:42:01 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 9:42:01 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  [May 14, 2014 9:42:01 AM ] - 192.168.1.1 : POST /sld/cimom HTTP/1.1 401 1792
  security.log
  #1.5 #00155D11160300650000014F00000F000004F95827B00C09#1400056919503#/System/Security/Audit##com.sap.security.core.util.SecurityAudit#Guest#0#SAP J2EE Engine JTA Transaction : [045ffffffe5ffffff8e00ffffffcefffffffa]#n/a##9d0725f0db4311e3c01800155d111603#SAPEngine_Application_Thread[impl:3]_0##0#0#Warning#1#com.sap.security.core.util.SecurityAudit#Plain###Guest    | USERACCOUNT.MODIFY    | UACC.PRIVATE_DATASOURCE.un:Administrator    |     | SET_ATTRIBUTE: lastfailedlogon=[{0001400053321593} -> {0001400056919450}], SET_ATTRIBUTE: PRINCIPAL_MODIFY_DATE=[{0001400053367448} -> {0001400056919483}], SET_ATTRIBUTE: failedlogonattempts=[{0} -> {1}], SET_ATTRIBUTE: LAST_MODIFIED_BY=[{} -> {Guest}]#
  #1.5 #00155D11160300650000015000000F000004F95827B03D0C#1400056919521#/System/Security/Authentication##com.sap.engine.services.security.authentication.logincontext#Guest#0##n/a##9d0725f0db4311e3c01800155d111603#SAPEngine_Application_Thread[impl:3]_0##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.FAILED
  User: N/A
  Authentication Stack: sap.com/com.sap.lcr*sld
  Login Module                                                                                                         Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT  ok          false                 true      
  2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          exception             true       Authentication did not succeed.
  3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok                                true       #
  #1.5 #00155D111603006F0000014100000F000004F95827B072ED#1400056919624#/System/Security/Audit##com.sap.security.core.util.SecurityAudit#Guest#0#SAP J2EE Engine JTA Transaction : [045ffffffe5ffffff8e00ffffffcf0]#n/a##9d199c80db4311e38ead00155d111603#SAPEngine_Application_Thread[impl:3]_4##0#0#Warning#1#com.sap.security.core.util.SecurityAudit#Plain###Guest    | USERACCOUNT.MODIFY    | UACC.PRIVATE_DATASOURCE.un:Administrator    |     | SET_ATTRIBUTE: LAST_MODIFIED_BY=[{} -> {Guest}], SET_ATTRIBUTE: PRINCIPAL_MODIFY_DATE=[{0001400056919483} -> {0001400056919606}], SET_ATTRIBUTE: lastfailedlogon=[{0001400056919450} -> {0001400056919576}], SET_ATTRIBUTE: failedlogonattempts=[{1} -> {2}]#
  #1.5 #00155D111603006F0000014200000F000004F95827B0B823#1400056919654#/System/Security/Authentication##com.sap.engine.services.security.authentication.logincontext#Guest#0##n/a##9d199c80db4311e38ead00155d111603#SAPEngine_Application_Thread[impl:3]_4##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.FAILED
  User: N/A
  Authentication Stack: sap.com/com.sap.lcr*sld
  Login Module                                                               Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT  ok          false                 true      
  2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          exception             true       Authentication did not succeed.
  3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok                                true       #
  #1.5 #00155D111603006A0000019C00000F000004F95827B45A12#1400056920281#/System/Security/Audit##com.sap.security.core.util.SecurityAudit#Guest#0#SAP J2EE Engine JTA Transaction : [045ffffffe5ffffff8e00ffffffcf7]#n/a##9d7ddc90db4311e3b8e200155d111603#SAPEngine_Application_Thread[impl:3]_19##0#0#Warning#1#com.sap.security.core.util.SecurityAudit#Plain###Guest    | USERACCOUNT.MODIFY    | UACC.PRIVATE_DATASOURCE.un:Administrator    |     | SET_ATTRIBUTE: PRINCIPAL_MODIFY_DATE=[{0001400056919606} -> {0001400056920260}], SET_ATTRIBUTE: failedlogonattempts=[{2} -> {3}], SET_ATTRIBUTE: LAST_MODIFIED_BY=[{} -> {Guest}], SET_ATTRIBUTE: lastfailedlogon=[{0001400056919576} -> {0001400056920224}]#
  #1.5 #00155D111603006A0000019D00000F000004F95827B463A9#1400056920295#/System/Security/Authentication##com.sap.engine.services.security.authentication.logincontext#Guest#0##n/a##9d7ddc90db4311e3b8e200155d111603#SAPEngine_Application_Thread[impl:3]_19##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.FAILED
  User: N/A
  Authentication Stack: sap.com/com.sap.lcr*sld
  Login Module                                                               Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT  ok          false                 true      
  2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          exception             true       Authentication did not succeed.
  3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok                                true       #
  #1.5 #00155D111603005E000000FF00000F000004F95827B4A30A#1400056920413#/System/Security/Audit##com.sap.security.core.util.SecurityAudit#Guest#0#SAP J2EE Engine JTA Transaction : [045ffffffe5ffffff8e00ffffffcfd]#n/a##9d9200d0db4311e3a8cf00155d111603#SAPEngine_Application_Thread[impl:3]_24##0#0#Warning#1#com.sap.security.core.util.SecurityAudit#Plain###Guest    | USERACCOUNT.MODIFY    | UACC.PRIVATE_DATASOURCE.un:Administrator    |     | SET_ATTRIBUTE: lastfailedlogon=[{0001400056920224} -> {0001400056920362}], SET_ATTRIBUTE: LAST_MODIFIED_BY=[{} -> {Guest}], SET_ATTRIBUTE: failedlogonattempts=[{3} -> {4}], SET_ATTRIBUTE: PRINCIPAL_MODIFY_DATE=[{0001400056920260} -> {0001400056920395}]#
  #1.5 #00155D111603005E0000010000000F000004F95827B4AB21#1400056920424#/System/Security/Authentication##com.sap.engine.services.security.authentication.logincontext#Guest#0##n/a##9d9200d0db4311e3a8cf00155d111603#SAPEngine_Application_Thread[impl:3]_24##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.FAILED
  User: N/A
  Authentication Stack: sap.com/com.sap.lcr*sld
  Login Module                                                               Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT  ok          false                 true      
  2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          exception             true       Authentication did not succeed.
  3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok                                true       #
  Normaly that means that the CIM Client is not correctly configured, but the SLD runs over the SolMan (7.1) and in the VisualAdmin > Server > Services > SLD Data Supplier
  HTTP Settings and CIM Client Settings are set to the SolMan host and uses the SLDDSUSER to sync the data with the SLD.
  Does anyone have an idea what process will connect hourly to the portal where the Administrator is set as user?
  I've been searching and reading the now for over two days on the SCN and the web, but I didn't figured it out.
  It looks like the portal itselfs want to connect to the local /sld/cimom but the SLD of the portal is still stopped, and also if its running, I get the same error every hour.
  Thanks for any advise!
  Tobias

  Hi Tobias,
  Please do the following once, if possible.
  1. Please change the password of administrator user and save the password in secure store and recycle the system.
  2. You may create a user with equivalent access/permission like administrator temporarily, until this problem is resolved, so that you can unlock the administrator logging in with that id.
  3. Please check if that administrator is being used in any connection from java stack, where the password is still old.
  4. Attach the default trace here at the time when the user is getting locked. We want to check further.
  5. You can follow what David advised in the SAP note, if you can identify the real cause, otherwise follow the above steps.
  Thanks.
  Regards,
  Sujit Kumar Banerjee.