Creation of role

Similar Questions

• OBIEE 11 g - role migration of applications DEV UAT or PROD

  Hi all

  There are blogs that have mentioned about migration applications role of UAT or Prod dev...

  Please provide the correct path below two files that we use for the migration of application role

  1 system-jazn-"Data.xml"

  2 jps-config. XML

  I have looked for these files but noticed there are 3 or 4 files whose name even under different paths.

  Kindly help. TIA

  Concerning

  If you mess up these files, your system will be getting damaged.

  You need to take good back and then do it.

  in other words, where you can avoid this risk is to manually enter roles. Creation of roles is an effort of time unless you keep deleting and creating new roles. If you do it manually you will have more control over the migration and you can fix it if there's a problem easily. Note that the migration of roles is not mapped groups to roles. You still need to map manually.

  OBIEEHOME\user_projects\domains\bifoundation_domain\config\fmwconfig

  1 system-jazn-"Data.xml"

  2 jps-config. XML

• Add the category role to the role

  Hello Experts,
  
  my scenario:
  (1) the task of reconciliation group
  (2) auto creation role category "AD rôles" if it does not exist
  (3) creating automatic roles from "AD rôles" ad groups category role
  
  Ive already done roles and role of automatic creation in default category category, but I still can't create roles in my category.
  I think it might be like that in the creation of role:
  
  mapAttrs.put (RoleManagerConstants.ROLE_CATEGORY_KEY, key)
  
  But how can I get key category role of my category var 'key '?
  Are there more links between role and role category?
  
  Pls help.
  
  Thank you.

  Sorry, this time I have not tested the key role of the category class

  In my environment, it is class java.lang. * Long *.

  Just check in your environment while reading any role (associated with any role category), at some point in the iteration you will get the key role of the category

  follow the class name of this category Key() attributeRole

  Check how you can play a role
  Get all of the attributes and iterate or get it directly by method getAttributName

  HashMap mapAttrs = role.getAttributes();
  
                 Iterator iter = mapAttrs.keySet().iterator();
  
                 while (iter.hasNext()) {
                      Object key = iter.next();
                      // definitely String
                                  System.out.println("RoleSearch.process() class of Key "+key.getClass());
                      Object val = mapAttrs.get(key);
                      if(val!=null){
                      System.out.println("RoleSearch.process() class of Value "+val.getClass());
                                     }
                      System.out.println(key+" = "+val);
                 }
  

  Note the preceding code has been tested on my app. and works.
  If this does not work, follow what bbagaria suggested environment question :)

• permissions on VM

  Hi have a few VM, I need to give permissions to the user so that he can access via client vsphere.

  I need to give a little on the VM level, some at the level of the data store, at the level of the network, a level of resources, to create tasks.

  Should what role I assign to this user?

  Please create a role with privileges and assign it to the user.

  You can find VMware docs on the creation of roles and assign privileges.

  For example:

  VSphere Documentation Centre

• Students cannot "connect/disconnect the virtual machine's CD/DVD devices.

  I will start with this context (and apologies for the wall o ' text): I'm a newbie.  I took the course VMware local community college offers [VMware ESXI Server Enterprise (CIS197)], but I've not yet certified. And I don't have a real experience, except what I have taught myself so far.

  I recently accepted a position of learning associated with the College (think: glorified lab tech). I was tasked to work with stuff from VMware in the laboratory (among other things such as Cisco and Juniper equipment). There is no pass-down information like the previous left the position four months ago.

  We have a single host running ESXi 348481 4.1.0. "We have vCenter Server (5.5.0, 1312298), running on Windows Server (2008 R2, Enterprise Edition).  Access host and vCenter through two different IP, addresses using the vSphere client (either 5.5 or 4.1, using a single application - depends to know if I connect to the host or vCenter).

  At that time, the host is using local storage only (we have plans to change this, but it will take time).  The host is not a production on its own server, because it does not have a school systems.  He does, however, run a number of virtual machines in the lab, students use (Linux, Microsoft, Web design, etc.).  So, right now, I can't take it down.

  I was tasked to create a number of virtual machines that students can use to make the basic labs of Microsoft Windows 7.  So far, I have:
  -Created users, one per student, on the host.
  -Creating VMs, deploy one per student, I have a gold model vcenter.
  -Creation of roles to limit the access of students to just their VM attributed, which they access via client vSphere.
  -Created a Windows Server 2008 R2 domain controller that is also a DHCP server.
  -Created a virtual network, which is accessible only by the Windows 7 virtual machines and is not visible outside the vSphere environment (if I said this right - he does not see the Internet or school network).

  So far, it's all good.

  However, I need to be able to allow students the ability to edit the ISO file on which their VM points in order to complete some laboratories. I guess they would use the button "connect/disconnect the virtual machine's CD/DVD devices" on the taskbar (or console window). It does not work.
  I searched a lot and found that others have had the same problem.  However, all of the solutions I've tried so far have failed.  When they click 'Connect to ISO image on the data... store. "they get an error message means nothing to me,"an internal error has occurred in the vSphere Client. Details: Object Reference not set to an instance of an object. Contact VMware support if necessary.
  The role that I use for students has these settings:
  -Data store > Browse the data store
  -Virtual Machine > Configuration > change the settings of the device
  -Virtual Machine > Configuration > settings
  -A bouquet under the virtual machine > Configuration >
  -Configure CD media
  -Console interaction
  -Connection of the device
  -On
  -Power off
  -(and more, which I don't believe are important to the question)
  -State > create the snapshot
  -State > go back to the snapshot

  I tried "Virtual Machine > Configuration > add existing disk", "Virtual Machine > Configuration > add new disk" and "Virtual Machine > Configuration > add or remove an instrument" with no luck.

  Either by the way, the root account can do all these things, but no other account can - not even a game as an administrator account.

  I've seen mention I have apply the role in the data store.  It is perhaps part of the problem. I can't see the data store when I am connected to the host (wellll, I can, if I click on the host name, then on the Summary tab - but roles do not apply at this stage).  I see is 'Inventory' (which has virtual machines and Pools of resources), 'Rôles' and 'log files '.

  I can see the data store when logged in vCenter. Roles of students, however, are defined on the host computer. If I clone the role of users in vCenter and change this role cloned to have "permissions" that those who are on the host computer and then apply it to the data store, it still does not work.

  So, after all this (which I hope I've included all the necessary information), what can I do to allow the students to change ISO to which they are connected?

  Of course, if I left something, or if someone has a question, please ask.  I want to get this resolved as soon as I can.

  It turns out that I finally found the solution to the problem.

  What 'fixed', it is sufficient to vSphere Web Client to vCenter, which then allowed us to use Single Sign-On (SSO).  This, in turn, allowed us to define users and roles in vCenter (rather than having set them up directly on the host computer) which have then been applied to the VMS of students and also to the data store.

  Now, they can (de-) connect their ISOs at will.

  I find it interesting that vSphere Client (application) shows the users (and the things that they have access to), but it won't let you set of users.

• want to take some 'CREATION Script' for all existing roles in DB.

  Hi all
  
  I want to take all existing roles in DB "Script of CREATION".
  Please give me the script to generate if you or suggest any link or doc.
  
  Oracle 10G

  Use this-
  Select "select dbms_metadata.get_ddl ('ROLE'," ' |) " ROLE | " ') || Chr (10) | "/" double; »
  from dba_roles
  /

  Please be aware subsidies will not come within the definition

  If you like the answer so don't forget to give points

• Vs role directly privilege on the creation of the procedure

  I gave an our develpers create them all procedure/run procedures privleges and also granted him a role that has choose, update privileges, but always as insufficient privileges error when attempting to create a procedure.

  On the other hand, when I grant the same privilege directly to the user, it is able to create the procedure without error.

  What I'm doing wrong - I'd like only to all privilege granted through roles.

  Your input please.

  acquired through ROLE privileges do NOT apply within the named PL/SQL procedures

• REST API v5 assignment of roles of creation?

  I use the 'Try It' feature for creating an agreements on the documentation of the REST API (REST API - documents electronic signature software - Adobe Document Cloud)

  But I get the error message: {"message': 'valid recipient role is missing.' " "} , " code ": { 'MISSING_REQUIRED_PARAM' }

  and I do not understand what the role of beneficiary is supposed to be like.

  The model defines as:

  {RecipientRole}

  SIGNATORY (enum): signatory.

  DELEGATE_TO_SIGNER (enum): delegate to the signatory,

  DELEGATE_TO_APPROVER (enum): delegate to the approver.

  APPROVER (enum):approver

  }

  and these defaults model schema:

  'recipientSetRole': {}

  'SIGNATORY': 'enum ',.

  'DELEGATE_TO_SIGNER': 'enum ',.

  'DELEGATE_TO_APPROVER': 'enum ',.

  'APPROVER': 'enum '.

  }

  What are the values that awaits the recipient role? I can't understand by trial and error...

  Hello Iris,.

  Can you let me know the name of the API you call tried in REST API? In addition, by default, the value should be defined as:

  "recipientSetRole": "SIGNATORY",.

  If you want to just use a single value. I would still check and confirm and would need the name of the function used.

  Kind regards

  -Usman

• Import/Export, impdp ORA-39083 on creation of the important role

  Version of DB 10204 on Windows 2003
  
  I clean a couple of databases by moving DB_OLD to DB_NEW database schemas and while doing so, I want to clean the unnecessary privileges and roles granted to the users/schema.
  
  I exported the schema of DB_OLD using expdp username@dbname parfile = D:\exp.par, inside her parfile I have:
  JOBNAME = EXP01JOB
  DIRECTORY = DUMP_DIR
  DUMPFILE=EXP01DUMP%U.DMP
  SCHEMAS = SCHEMA1, SCHEMA2, SCHEMA3
  PARALLEL = 4
  
  Everthing works well, the export is successful.
  
  When you import into DB_NEW, I use the impdp. I import using a file by as well and it works too, all objects belonging to the imported schemas, as well as all privileges for users and schemas.
  
  Issues related to the:
  
  (a) I tried to use EXCLUDE = of the export SUBSIDIES parfile, but it did not work. I want to export all the objects, but I want to clean what gets granted (sys privs and privs and role object) to the owner of the schema DB_NEW. So before exporting it, I tried to create the username and privileges in DB_NEW and then performs the import schema, but after importation that especially original DB_OLD privileges have been granted to the user in DB_NEW.
  Any other way around this? Here's what I ran into DB_OLD to see what had privileges SCHEMA1.
  
  SELECT DBMS_METADATA. GET_GRANTED_DDL('ROLE_GRANT','SCHEMA1') FROM DUAL;
  SELECT DBMS_METADATA. GET_GRANTED_DDL('SYSTEM_GRANT','SCHEMA1') FROM DUAL;
  SELECT DBMS_METADATA. GET_GRANTED_DDL('OBJECT_GRANT','SCHEMA1') FROM DUAL;
  
  Say that there is no workaround for the issue a solution) that is just the way would be to export schema and I revoke and to grant privileges.
  
  (b) I can not understand how to know what roles objects belong to? In the import.log, I see that I see this error:
  
  Processing object type SCHEMA_EXPORT/TABLE/SCHOLARSHIP/OWNER_GRANT/OBJECT_GRANT
  ORA-39083: Type than object_grant cannot create with eror of object:
  ORA-01917: user or role 'SCHEMA1_READONLY' does not exist
  Because SQL is:
  GRANT SELECT ON "SCHEMA1". "' TABLE_NAME ' TO 'SCHEMA1_READONLY '.
  
  I see that it is due to a role missing in DB_NEW, if I first create the role that I'm guessing that the error would not be there. However, I can't find a view of $ v that has this role. This role is created to allow certain users READ_ONLY access SCHEMA1 tables. What view should I be query to get the data? I looked at all the views that are listed under the dba_views which are like '% ROLE %' and I couldn't find the role "SCHEMA1_READONLY" listed in any of them.
  
  
  Thanks and let me know any suggestions.

  Hello

  Did you views dba_tab_privs and dba_roles that would help you to know what are the tables has the roles.

  Concerning
  Anurag Tibrewal.

• Web services - role management connector

  Hello

  do you have experience with Webservices IOM connector? I am incorporating a TS via this connector and need to resolve the roles of commissioning for accounts. The child table (contains the roles of account) changes generate messages UpdateAddAttributeValues/UpdateRemoveAttrbuteValues - I managed them in the BPEL (SOA of the connector part) code, but it seems to me that these messages are generated by a record change - so when you add three roles, three UpdateAddAttributeValues messages are generated - one per record in the roles table (at least it seems to be the case because the only role is on TS after the delivery of IOM). I'd rather supply the final set of roles in a single call, because the TS webservice expects a final list of roles as an input to the updateUser method parameter.

  Can you recommend a solution in the Web services connector to supply the final set of roles in the call for an update?

  Peter

  This is the expected behavior of any OOB/Custom connector and connector webservice is no different from that.

  When there is an addition / deletion of data of the child, by the corresponding transaction process task is triggered. However, it doesnot limit allows you to add multiple child records at once. IOM will trigger several instance of the task to process in-house.

  So if you add child data 3-4 at once, you can do by editing the process shape and add several records it or make the request through catalog if you have denounced as right.

  However, if you want a single adapter to treat all newly added entries, you need to improve the connector. You can do this:

  1 > turn off the OOB tasks for the data of the child, to create the task with a custom adapter that put the data into a temporary table.

  2 > write a personalized planning work to treat all child data entered based on the date of creation and operation of the indicator (Add/Remove).

  3 > job should clear the folder after the successful operation.

  .

• Role permissions for the same object more

  Hello everyone,

  I work in a large company with lots of data and Oracle DB base, specifically

  the management of the security services account (accounts, roles, privileges, etc...).

  In a few DB, we have a role named RO ALFA READ, with grant select on table TABLE_32.

  The ROLE of ALPHA, or better, the ROLE ALFA users grant specifically also in the array of objects.

  This is the final situation:

  SQL > SELECT * FROM DBA_ROLE_PRIVS WHERE DEALER = "TIZIO";

  DEALER GRANTED_ROLE SMA DEF

  ------------------------------ ------------------------------ --- ---

  TIZIO CONNECT YES

  TIZIO RESOURCE NO YES

  TIZIO                          DBA                            NO  YES

  TIZIO SELECT_CATALOG_ROLE NO YES

  TIZIO AQ_ADMINISTRATOR_ROLE NO YES

  TIZIO RO_ALFA_READ NO YES

  SQL > c.role.tab

  1 * SELECT * FROM DBA_tab_PRIVS WHERE DEALER = "TIZIO".

  SQL > r

  1 * SELECT * FROM DBA_tab_PRIVS WHERE DEALER = "TIZIO".

  DEALERSHIP OWNER TABLE_NAME GRANTOR PRIVILEGE

  ------------------------------ ------------------------------ ------------------------------ --------------------------------

  TIZIO                          SYS                            TABLE_32                       SYS                    SELECT

  In your view, why the engineer decided to give this privilege 'double' on the table?

  Thank you!

  Perhaps because the privileges granted through a role are not used during the execution of a procedure:

  [oracle@db11204 ~] $ sqlplus / as sysdba

  SQL * more: Production of liberation 11.2.0.4.0 Thu Aug 20 23:48:31 2015

  Copyright (c) 1982, 2013, Oracle.  All rights reserved.

  Connected to:

  Oracle Database 11 g Enterprise Edition Release 11.2.0.4.0 - 64 bit Production

  With partitioning, OLAP, Data Mining and Real Application Testing options

  SQL > create user t1 identified by t1.

  Created by the user.

  SQL > create user t2 identified by t2;

  Created by the user.

  SQL > grant connect, resource for t1, t2;

  Grant succeeded.

  SQL > create table t1.tt (ID);

  Table created.

  SQL > insert into t1.tt values (2);

  1 line of creation.

  SQL > commit;

  Validation complete.

  SQL > create role role1.

  Created role.

  SQL > grant select on t1.tt to role1.

  Grant succeeded.

  SQL > grant role1 at t2;

  Grant succeeded.

  SQL > conn t2/t2

  Connected.

  SQL > select * from t1.tt;

  ID

  ----------

  2

  SQL > conn / as sysdba

  Connected.

  SQL > grant create procedure at t2;

  Grant succeeded.

  SQL > conn t2/t2

  Connected.

  SQL > create procedure p1 is

  2 start

  3 run immediately "select * from t1.tt';"

  4 end;

  5.

  Created procedure.

  SQL > set serveroutput on

  SQL > exec p1

  BEGIN p1; END;

  *

  ERROR on line 1:

  ORA-00942: table or view does not exist

  ORA-06512: at the 'T2 '. "P1", line 3

  ORA-06512: at line 1

  SQL > select * from t1.tt;

  ID

  ----------

  2

  SQL > show user

  The USER is 'T2 '.

  SQL >

• Configuration of the roles of IOM (11gr2ps2) in AD

  Hi all

  I have a scenario where I want to configure a role of IOM in AD. E.g. If, I create 'Test' role in IOM should directly in the ad. So any body knows how can we achieve this? Any help will be very useful.

  Creation of Planner will help here?

  Thank you

  Sonya

  (1) it should go directly after the creation of the IOM. It is not dependent on the user operations.

  (2) is a time of activity. you need not change every time. But the r cles uses only the attributes that are mapped to the directory

  Note:

  The LdapContainerRules.xml file may contain rules using only the attributes are mapped to the directory. A rule cannot be written using the attributes of objects or attributes that are not part of the entity. This is true for user and role entities. For example, role Email can use rules for roles, and the Organization of the user name cannot be used for the user entity.

  ~ J

• Error step 7, creation of WebCenter, and schemas content using the remote control

  Hi all

  I have the installation of the portal WebCenter using JSK, but the failure of the process when it tries to create patterns using the remote, it shows "Time out when connecting to the database. The current values expires 30 seconds. "UCR-6090: jump main operation: validation stage of connection failure.

  This is the content of install_setup.log

  Thu Aug 14 10:12:32 CLT 2014: END STEP 6 22: Configurion of the database Instance

  Thu Aug 14 10:12:32 CLT 2014: START STEP 7 22: creation of the WebCenter and patterns content using the remote control. Estimated time is 1 minute. Please wait..

  localhost.localdomain:1521:ORCL

  Installation of patterns Begin spaces

  Please enter the password(User:sys) of the database:

  Processing of command line...

  Timeout connecting to the database. Current timeout value is 30 seconds.

  UCR-6090: jump main operation: validation step connection failure

  And the rcu.log

  14-08-2014 10:14:38.925 NOTIFICATION rcu: oracle.sysman.assistants.rcu.backend.RCUCommandLineParser::process: processing command line...

  14-08-2014 10:14:38.927 NOTIFICATION rcu: oracle.sysman.assistants.rcu.backend.SilentRCUModel::performOperation: from validations...

  14-08-2014 10:14:38.934 NOTIFICATION rcu: oracle.sysman.assistants.common.dbutil.jdbc.JDBCEngine::connect: the connection to the database: user: sys, role: sysdba, connectString: (description = (address = (host = localhost.localdomain)(protocol=tcp) (port = 1521)) (connect_data = (service_name = ORCL) (server = dedicated)))

  14-08-2014 10:15:39.250 rcu ERROR: oracle.sysman.assistants.rcu.backend.validation.StepValidator::isConnectionStepValidated: unable to connect to database: timeout when connecting to the database. Current timeout value is 30 seconds.

  14-08-2014 10:15:39.250 NOTIFICATION rcu: oracle.sysman.assistants.common.dbutil.jdbc.JDBCEngine::connect: the connection to the database: user: sys, role: sysdba, connectString: (description = (address = (host = localhost.localdomain)(protocol=tcp) (port = 1521)) (connect_data = (sid = ORCL) (server = dedicated)))

  14-08-2014 10:16:39.192 NOTIFICATION rcu: oracle.sysman.assistants.common.util.SilentMessageHandler::writeToLog: timeout when connecting to the database. Current timeout value is 30 seconds.

  14-08-2014 10:16:39.192 rcu ERROR: oracle.sysman.assistants.rcu.backend.validation.StepValidator::isConnectionStepValidated: SQLFatalErrorException:

  oracle.sysman.assistants.common.dbutil.SQLFatalErrorException: timeout when connecting to the database. Current timeout value is 30 seconds.

  at oracle.sysman.assistants.common.dbutil.jdbc.JDBCEngine.connect(JDBCEngine.java:585)

  at oracle.sysman.assistants.rcu.backend.validation.StepValidator.connectDatabase(StepValidator.java:358)

  at oracle.sysman.assistants.rcu.backend.validation.StepValidator.connectDatabase(StepValidator.java:253)

  at oracle.sysman.assistants.rcu.backend.validation.StepValidator.isConnectionStepValidated(StepValidator.java:1366)

  at oracle.sysman.assistants.rcu.backend.SilentRCUModel.performOperation(SilentRCUModel.java:140)

  at oracle.sysman.assistants.rcu.backend.RCUModel.startOperation(RCUModel.java:346)

  at oracle.sysman.assistants.rcu.Rcu.execute(Rcu.java:339)

  at oracle.sysman.assistants.rcu.Rcu.main(Rcu.java:363)

  2014-08-14 10:16:39.193 rcu ERROR: oracle.sysman.assistants.rcu.backend.SilentRCUModel::performOperation: UCR-6090: operation hand jump: validation step connection failure

  2014-08-14 10:16:39.193 NOTIFICATION rcu: oracle.sysman.assistants.common.util.SilentMessageHandler::writeToLog: UCR-6090: operation hand jump: validation step connection failure

  Any suggestions?

  Best regards!

  Hello

  (1) you see no error on the Setup screen? If Yes please download the screenshot?

  (2) the UCR is a failure because it is not able to connect to the database. Please make sure that you have entered the correct database details.

  Also, can you please try the following and check the box.

  Go to the location / / rcu/config /

  Take backup for the file rcu.properties, and then change the below

  JDBC_LOGIN_TIMEOUT = 30

  TO

  JDBC_LOGIN_TIMEOUT = 300

  and try again.

  Concerning

  Françoise

• Script to join the domain, the role of configuration, add permissions and activate/SNMP configuration

  So I'm writing a script to install our vSphere hosts to work with our monitoring software.  Right now, it's all done by hand and I would like if possible to automate it.  So far, I came up with this.  I get to step 5 and that's where it fails.  I can get it manually run the Get-VIAccount command, but in the script, it fails.

  These are my steps

  1. connect to an existing host and retrieve role properties.

  2. connect to the new host

  3 join the domain.

  4. disconnect the new host and reconnect with the credentials of domain

  5. get the domain account, role of research/create and add permissions to host

  6. enable and configure SNMP

  7 restart MGMT officers.

  #Variables

  $vmhost = "Host03".

  $domaintojoin = "Domaine.org".

  $domainAlias = "domain".

  # $usernametograntpermissions = "service.account".

  $rolename = 'team - account control service '.

  #Connect to host17 to retrieve the role privileges

  to connect-viserver host17

  #Extract of privileges for the role of vcenter Monitoring Service

  $privsforrole = get-viprivilege-role (get-ferrule-name $rolename)

  Server VI #disconnect

  disconnect-viserver *-confirm: $false

  VSphere hosts #Connect above (enter the credentials of the root when prompted)

  SE connect-viserver-Server host03

  #Join field

  Get-vmhostauthentication - VMhost ctcvsphere3 | Game-VMHostAuthentication-domain $domaintojoin - user %-% - JoinDomain-confirm password password: $false

  credentials of the #disconnect root

  disconnect-viserver *-confirm: $false

  #reconnect with the credentials of domain

  SE connect-viserver-Server ctcvsphere3-user username-password password % domain\username

  #Get domain account and add to the host

  $viAccount = get-VIAccount-DOMAIN-User - ID service.account

  # Get the role

  $viRole = get-ferrule-name $roleName

  If (-not $viRole) {}

  throw the "Role of the creation.

  New-ferrule-name $rolename - Server $vmhost

  Together-ferrule-role (Get-ferrule-name $rolename - Server $vmhost) - AddPrivilege (get-VIPrivilege-id $privsforrole - Server $vmhost)

  }

  # Add permissions on VMHost

  New-VIPermission-Director $viAccount-role $viRole - entity $vmHost

  all VIServers #disconnect

  Disconnect-VIServer *-confirm: $false

  }

  #Configure SNMP

  Get-vmhostsnmp | set-vmhostsnmp-enabled: $true

  Get-vmhostsnmp | game-vmhostsnmp - ReadOnlyCommunity 'SNMP.

  #Restart Mgmt officers

  Get-VMHostService - VMHost $vmhost | where {$_.} Key - eq "vpxa"} | Restart-VMHostService - Confirm: $falese - ErrorAction SilentlyContinue

  Here is my error:

  Get-VIAccount: 27/02/2014-16:03:11 VIAccount Get A general system

  rror occurred: access to the directory error

  C:\ps1\vmware\snmp1.ps1:42 char: 28

  + $viAccount = get-VIAccount < < < < - domain - User - ID SERVICE. ACCOUNT

  + CategoryInfo: NotSpecified: (:)) [Get-VIAccount], SystemError)

  + FullyQualifiedErrorId: Client20_VmHostServiceImpl_RetrieveUserGroups_Vi

  Error, VMware.VimAutomation.ViCore.cmdlets.Commands.PermissionManagement.GE

  tVIAccount

  Get-VIAccount: 27/02/2014-16:03:11 Get - VIAccount VIAccount with the id

  "service.account" was not found using the specified filters.

  C:\ps1\vmware\snmp1.ps1:42 char: 28

  + $viAccount = get-VIAccount < < < < - domain - User - ID SERVICE. ACCOUNT

  + CategoryInfo: ObjectNotFound: (:)) [Get-VIAccount], VimExceptio)

  n

  + FullyQualifiedErrorId: Core_OutputHelper_WriteNotFoundError, VMware.VimA

  utomation.ViCore.Cmdlets.Commands.PermissionManagement.GetVIAccount

  New-VIPermission: Impossible to validate the argument on the parameter "principal." The argument

  ent is null or empty. Provide an argument that is not null or empty, and then try

  the command again.

  C:\ps1\vmware\snmp1.ps1:56 tank: 40

  + New-VIPermission-main < < < < $viAccount - $viRole - entity role

  y $vmHost

  + CategoryInfo: InvalidData: (:)) [new VIPermission], ParameterBi)

  ndingValidationException

  + FullyQualifiedErrorId: ParameterArgumentValidationError, VMware.VimAutom

  ation.ViCore.Cmdlets.Commands.PermissionManagement.NewVIPermission

  The term 'catch' is not recognized as a cmdlet, function, script fi

  the, or an executable program. Check the spelling of the name, or if a path has been included

  DED, make sure the path is correct, and then try again.

  C:\ps1\vmware\snmp1.ps1:57 tank: 12

  + captures < < < < {}

  + CategoryInfo: ObjectNotFound: (catch: String) [], CommandNotFou

  ndException

  + FullyQualifiedErrorId: CommandNotFoundException

  Thanks in advance!

  Dimitar did a nice write-up of this phenomenon and a possible solution.

  See ESXi hosts to join a domain and licensing with PowerCLI

• 11.1.1.7.1 book - Agent creation/modification impossible due to WLS security problem

  Hi all

  Only, I came across a villain on 11.1.1.7.1 where the creation/modification of the Agents has become impossible due to the suspended GUI completely and become unresponsive.

  It doesn't happen in the configurations with several suppliers of safety in the field of security WLS (virtualize = true of course, works of auth/allow normal).

  The IUG offer (managing agents), as soon as a getUserPopulationAccount single HTTP Post request is sent, hang GUI and the POST request error after 120 seconds

  OBIPS11bTtKewWE / + A0

  {t:6, "fatal": true} bTtKewWE / + A0 {"msg": "Error retrieving data from the user/group of Oracle BI Server\u0027s user Population API."}

  "related": [{"msg": "Driver Odbc returns an error (SQLExecDirectW).", "related": [{"msg": "State: HY000."}]}]  Code: 10058.

  [NQODBC] [SQL_STATE: HY000] [nQSError: 10058] A general error occurred. \n [nQSError: 43113] Message returned by OBIS. \n

  An error message was received by BI Security Service: an error message was received by BI Security Service:

  [nQSError: 46169] A HTTP 1.1.1.1:6666 operation has expired after 120 seconds. Abandoned operation. (HY000) ","bound ":

  [null]}, {"msg": "SQL issued: {call NQSSearchIdentities (\u0027USERS\u0027,\u0027NAME_PATTERN=weblogic*\u0027)}", "related": "}

  {[{[[null]}, null]}, null]}

  I suspect this is related to the question known to manage entities of type user during posting Membership Application role in company management. Seems that there is something very rotten...

  I raised an SR for this, but not too positive in what respect what to expect an answer...

  Note that I'll be switching this on the site of communities both Oracle!

  Any ideas / tricks / rants?

  Solved. A new property must be added to the EM security provider configuration:

  Name property = PROPERTY_ATTRIBUTE_MAPPING
  Value = DISPLAY_NAME = uid

  (where uid = the GUID of your LDAP in question).
  Unfortunately, only mentioned in SRs and not in the official doc with an explanation where this property (against all odds) comes from and why all of a sudden need.

  See you soon!