Project HSS Server export Essbase of access control information
I used the import/export successfully HSS 9.3.1 utility to export and import configuration for our HSS configuration information.but I want to be able to export and import information access as well as for a server control Essbase 9.3.1 and filters and Calc etc that can be used by groups that I've configured with the tool.
Does anyone know how to do what I am pulling my hair out (small I)
Concerning
John
Hello
HSS the hub for the supply of all so maybe not quite true, it is I think I understand that the information you're after is still detained in the essbase security file and the hss export utility does not go down to that level.
I think you need to use another method to obtain this information, perhaps maxl essbase utility of Advanced Security Manager or simply export dry.
See you soon
John
http://John-Goodwin.blogspot.com/
Tags: Business Intelligence
Similar Questions
-
"Assign access control" on essbase applications through shared services
Hi Experts,
I just install an Essbase 11.1.2.4 environment, where I could see that the ability to assign filters to users in environmental assessments is disabled (I guess maybe it's that this version does not support the autonomous concept).
So I thought of attribution of the filters to users through shared services groups\Essbaseinstance1\sampleapp Application - access entitlement control, but when I click on "Assign access control", it says in the right pane that the page cannot be displayed.
Any tips? for your information, I use IE 11.
Thank you
Siva
I gather from your question that EAS runs like it enough to be upward, as you did that you have configured the web server again after that the configuration of the Regional service otherwise it will be a communication error.
See you soon
John
-
Gurus,
Access control in HSS report gives a good report in PDF format. Is there a way we can have the report generated in XLS format. Export in XLS or something like that?
I was not able to find it again. Any guidance / suggestion would be great.
also.
When I do a LCM of SHARED SERVICES under FOUNDATION, in the export for supply, the ROLE_ID looks like:
Native://DN=CN=hub:2, OU is HUB, OU = roles, dc = css, dc = hyperion, dc = com? ROLE
Native://DN=CN=HAVA:0ad72262 - 0000-0f5a-000000ea5598b293, HAVA OU =, OU = roles, dc = dc = hyperion, dc = com, css? ROLE
How do know us what role a user is provisioned while watching something like that? HAVA is to R and A, and HUB for shared services, but what kind of role?
Thank youYou can create a report of implementation of the HSS.
Administration-> commissioning report view
You can then select the Application. This provides an option to export to the csv file.
Concerning
Celvin
http://www.orahyplabs.com
-
Evaluation version for the cisco secure access control server
Hello
I can get the trial version for the cisco secure access control server. IF SO pls send me the link.
Thank you
Hi Thomas,
You can download ACS for windows 4.1 or 4.2 from the link below:
http://www.Cisco.com/cgi-bin/tablebuild.pl/ACS-win-eval
For ACS 5.x, please visit cisco.com
Download software > Security > Cisco Secure Access Control System 5.x > Secure Access Control System Software
HTH
Kind regards
Jousset
Please evaluate the useful messages-
-
Access control server - CASE
Hi people,
I have my doubts on the access control server and NAC - clean access server.
The CASE of the NAC can do the job of the ACS?
In my scenario, it acts as VMPS server, AAA server, or RADIUS server.
Can someone help me?
Thank you!
Hi friend
ACS is entirely different than the clean access server. See the below url for more details.
http://www.Cisco.com/en/us/products/ps6128/products_qanda_item0900aecd803be813.shtml
If it helps, please note or answering another question.
Kind regards
Rafael Lanna
-
Access controls and IP addresses
Could someone clarify something for me, make access controls restrict access to a volume of only specified IP address or allow access to any IP address of a computer that includes the specified IP address...
An example of what I mean...
I have a volume 1, which has a record of access control of 192.168.1.10 and nobody else.
I have a server with two connections isci switching, 192.168.1.10 and 192.168.1.11
When I look at the current connections on the volume it shows both the addresses IP as having connections - but I would like to only one of the for connect.
Additional ACLs are hidden, being created on the fly. This prevents also maxing out limit ACL and speed up the login process.
Ideally iSCSI should be on its own subnet, with dedicated network cards. You can use the remote installation wizard to define subnets are available for iSCSI use.
It is a characteristic of the ACHIEVEMENT. Initiator iSCSI MS if SUCCESS did not you will need to define each path connection manually for each volume. Successfully, you need only one discovery entry, HIT does the rest.
-
Hi all
I have two EqualLogic PS6500E. On volumes of, created under the access control list , I applied and restriction of IP address to allow only the beach of 192.168.1. *.
Since a few days under connections , I noticed traffic/connections from other IP addresses (not high-end 192.168.1. *) actually configured on the servers of access to this volume.
Any ideas how is this possible?
Thanks in advance
Sébastien
Sorry, I wanted to add. Run the Remote Setup Wizard and select the option "Configure MPIO". That will list all subnets available on this server. Exclude everything except the iSCSI subnet.
Kind regards
-
The issue of logging of access control list name.
Hello
I've used ACL for many years and had not too many questions. I am a new client site and a project of Port authentication that we planned on using extanded access control lists to control traffic entirely open to help write the correct ACL for services using the ACL. The issue I have found is using the ACL below-> syslog logging does not show the port number which is exactly what we are after. We have not named ACL extended that record the port number as well.
Running: Cisco IOS Software, s72033_rp (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2 (33) SXH3a, RELEASE SOFTWARE (fc1)
IP extended Access-list-example access list
IP enable any any newspaper
deny ip any any newspaperThe log output:
Mar 22 11:23:46: % s-6-IPACCESSLOGP: the list of access-list-example permit tcp nnn.nnn.nnn.nnn (0)-> xxx.xxx.xxx.xxx (0), 1 packet
On a normal extended access list, we get this in a log output:
access-list 120 allow host ip nnn.nnn.nnn.nnn xxx.xxx.xxx.0 0.0.0.7 Journal
Mar 22 09:31:46: % s-6-IPACCESSLOGP: list 120 permit tcp nnn.nnn.nnn.nnn (3874)-> xxx.xxx.xxx.xxx (5001), 1 packet
This shows the port numbers - I was wondering what small thing that I missed on logging for what I checked: http://www.cisco.com/web/about/security/intelligence/acl-logging.html and I see that the use of the switch of newspaper should do this because it shows the port numbers in their example.
I'm sure it'll be something simple but I can't figure it out - I searched all odd Cisco cautions for ACL named which connect to port numbers, but can't find anything easily. Just wondering if anyone else has experienced this.
Thank you
Z.
For the port number appear in the newspapers, you must create the list of access as follows:
IP extended Access-list-example access list
permit tcp any gt 0 any gt 0 log
permit udp any gt 0 any gt 0 logHope that helps.
-
Directory MSDS access control error
I'm trying to grant access to a directory phone users Jabber video and I get the following error.
Unable to communicate with the Provisioning Extension. See log (log-web.txt) for details.
Journal - web.txt
23:15:29,641 [9] WARN ASP.tandberg_tms_ui_phonebook_phonebooksetonuser_ascx - POST http://localhost:8788/pb/phonebooks/id/7a187c51-5da2-40a7-a214-27c4ae871ea1/acls failed: The remote server returned an error: (500) Internal Server Error.
I confirmed and even updated the user used in TMSPE settings, while the health check out all green.
Any ideas before I open a TAC case, thank you.
Hi Patrick.
It's a bug :) it happens when you change access control. For example, you grant access to a group, then clear, then re-enable a re.
The only solution is to recreate the phonebook. Delete it and recreate it. It will be fixed in the next version, I think.
/ Magnus
Sent by Cisco Support technique iPhone App
-
Console Bus service 12 c - cannot display/change access control strategy
Using Weblogic 12.1.3 + FMW 12.1.3
So I exported / imported all our existing material FMW GR 11, 1 objects in a new field of 12 c FMW. Everything works - except that I can't click on the link for "transportation access control. Contextual text says "connected to the role is not allowed to display/change access control strategies.
In EM, the Application role 'MiddlewareAdministrators' shows the administrators as a member group. Proxies that 11 g used the default "of the Everyone group" fail like proxies that can visit based on roles.
Even if I create a new proxy, I'm stuck using the access of Transport control link.
So I added the permission to my account, and the Transport link is available. So I removed this policy and then added the authorization for the role of MiddlewareAdministrators, and it works
Looks like I click on the 'OK' button the first time.
But this seems to indicate a lack of permissions when fmw 12.1.3 is installed directly. Since we are upgraded to 11g, I don't know if this authorization is also absent in 12.1.1 and 12.1.2
I have
-
Project and server are not accessible! (175002)
This is the error message I get whenever I try to use Dreamweaver to connect to my server:
"Project and server are not accessible! (175002).
I know that this subject has developed for people using Subversion. But I don't use a Subversion.
It never happened until I made the last update to Dreamweaver.
Please notify.
Thank you!
The f
Because this is a Subversion error, I suspect that Dreamweaver tries to access the repository, and as you have not, you get the error.
How to solve this problem is to develop the files Panel by clicking on the icon at the far right:
Then select the icon for the remote server.
You can then restore the files to normal size panel. This should solve the problem.
-
Message access control in the OSB proxy service when the Service Type is the Any SOAP Service
Hello
We have a proxy OSB service where the Service Type is 'no matter what SOAP Service'. We use Auth.xml to authenticate messages to achieve this proxy service.
It is, ca we apply Message this proxy access control so that only user A is allowed to sent message has and only user B is allowed to message sent B?
Us know if the proxy OSB service is based on a wsdl, then we can apply access control message for each operation in the Security tab - and thus specify which user can access the operation. But unfortunately, we have not a wsdl, because this service proxy is a proxy gateway and must accept any SOAP message reaches.
For example, if the user name in the SOAP header is msgAUser, get is accepted.
"< soapenv:Envelope xmlns:soapenv ="http://schemas.xmlsoap.org/soap/envelope/">"
< soapenv:Header >
"< xmlns:wsse wsse: Security ="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">."
< wsse: UsernameToken >
< wsse:Username >msgAUser< / wsse:Username >
< wsse:Password >msgApwd< / wsse:Password >
< / wsse: UsernameToken >
< / wsse: Security >
< / soapenv:Header >
< soapenv:Body >
<Get>
...
< /Get>
< / soapenv:Body >
< / soapenv:Envelope >
If the user name in the SOAP header is msgBUser, then MessageB is accepted.
"< soapenv:Envelope xmlns:soapenv ="http://schemas.xmlsoap.org/soap/envelope/">"
< soapenv:Header >
"< xmlns:wsse wsse: Security ="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">."
< wsse: UsernameToken >
< wsse:Username >msgBUser< / wsse:Username >
< wsse:Password >msgBpwd< / wsse:Password >
< / wsse: UsernameToken >
< / wsse: Security >
< / soapenv:Header >
< soapenv:Body >
<MessageB>
...
< /MessageB>
< / soapenv:Body >
< / soapenv:Envelope >
Any suggestions please?
Understood.
My current client, we have faced the same problem and implemented a similar design which nevertheless has important benefits.
The problem with proxy input all SOAP is not only in the complexities of authentication. Most important, resources fine grain (thread) management becomes impossible: proxy entry has a workmanager, one constraint of son max. If any single service behind entered proxy knows an influx of requests (because of a peak or a misconfigured customer), he eats the workmanager dry and the rest of the services become too inadmissible.
In this spirit, we have implemented the following diagram. It's a little more complicated, but it serves us well for a few years already:
EntryProxy 1-> Interceptor entering Proxy-> Proxy 1
EntryProxy 2-> Interceptor entering Proxy-> Proxy 2
...
Enter proxy doesn't do Nothing but shall forward the request for interception of incoming traffic. Power of Attorney of the entry, however, has its own WSDL, authentication and the workmanager which allows precise control.
Another important aspect of a proxy of the entry, it is that it passes a custom header containing the name of the destination of the interceptor, e.g. TargetURI = "ProxyService/Paypal/Paypal.
Incoming Interceptor Proxy performs all recording, the error handling and other common tasks.
Then, according to the last header, the proxy of the interceptor makes a dynamic call to route to the specified destination.
Yes, this design has an additional moving part - a proxy entry - but he a) works b) guard control all in our hands. The entry proxy is a very small point; When I need to make a new one, I just copy an existing one and replace the WSDL file and the value of the TargetURI - 30 seconds of work.
Hope that helps.
Vlad
-
Automation maxl script on a server Unix Essbase - help needed please
Hi all
I wonder if someone could help me because I am completely new to unix and we have an old server with essbase v9.3.1 which holds a few cubes that update us manually through orders of PuTTY. Basically, we have a preview to update maxl file and a file dat apdate maxl are executed by running a .ksh file using put them. The .ksh file has the following line as we would in a Windows .bat file
essmsh /xdata/ETL/prod/Hyperion/dataload/scripts/refreshEssbase.msh
By operating manually via putty the maxl file works perfectly.
In a recent attempt to automate this I asked our guys to Unix to create a crontab schedule that he did, but he doesn't seem to be running. He removed the ctrl - M and added a path to the essmsh as follows:
/ Hyperion/Essbase/bin/essmsh /Xdata/ETL/prod/Hyperion/dataload/scripts/refreshEssbase.msh
But this seems to give the error:
LD.so.1:: essmsh: fatal: libessmaxlu.so: open failed: no such file or directory
Killed
The libessmalu.so file is in the same directory as the essmsh so don't know what it means.
So I thought that this could be to do with the path, so I tried to change it to:
xdata/ETL/prod / / Hyperion/Essbase/bin/essmsh /xdata/ETL/prod/Hyperion/dataload/scripts/refreshEssbase.msh
Not always the same error.
Any help? Nobody knows what the .ksh script should be to launch the maxl file? How comes the original script work fine manually via putty but would not go via a task with crontab?
Thank you very much
Grivault
Published by: Dreamscapeuk on July 4, 2011 16:15If you just take all the details of the hyperionenv.doc and then put in your script but put export in front of each line then set up the variables before essmsh is called
for example export HYPERION_HOME = / HyperionSee you soon
John
http://John-Goodwin.blogspot.com/ -
linking projects; message for export
Captivate 5 in TCS3 under Windows XP
So many problems and contradictory responses on the forum.
At the end of a project, I have a button that the user can click to go to another related .swf file. Here are my problems:
- Nowhere on the forums anyone said anything about linking to a .swf file. I saw that said to post a link to the .cptx or the .htm, but not to a .swf messages. Is it not possible to link .swf?
- When I publish a .swf, I get a long message that says that the files and related projects may require export and all referenced projects and files with their corresponding HTML files must be copied into the output folder. Should put all the files in a folder? So I should never use post it on folder option in the dialog box publish?
- I didn't at this point due to the above error, but I don't see an option, click on the button to open the related project. There may be cases where the user does not have to play the other project. How do you get around that?
As always, thanks for your help in advance. I can't believe it takes so long to get the fixed search function.
Here is my understanding of the who is required to bind projects, but I would be grateful to be corrected by one of the Captivate gurus if I am wrong anywhere.
(1) needed captivate swf an html wrapper works correctly, so you cannot bind successfully directly in a swf file.
Menu Action of Captivate 2) for buttons and the blades offer an option 'Open URL or file' which seems promising, but that puts in place an absolute connection and makes the laptop project if the link points to the published version of a related project of Captivate. Use this option if you want to give your users a link to www.google.com (for example), but not for any link within the family of projects that make up your teaching material Captivate collection.
(3) for the purpose of the latter, use the action 'Open another project', accessing the file cptx or cp for the project target. When you have set up the link, Captivate will establish the link so that it expects to find a file named {project name} .htm in the same folder as the project.
Example: (i) Project_A contains a button that you want to that users click to open the published output of Project_B.
(ii) the title of the draft that you have defined in the dialog box post of Project_B is (for example) 'Lesson 2', and cptx leader of Project_B is "2.cptx lesson".
(iii) you set the action on the success of the button in Project_A as 'Open another project' and point the link to the 2.cptx lesson.
(iv) you publish Project_A in a folder called 'Published lessons' (for example).
(v) the button link in Project_A expects that the folder 'Lessons published' also contains a file named 'Lesson 2.htm' and its associated file 'lesson 2.swf. If you publish a Project_B in this folder, the link works correctly, but if you choose to publish Project_B in another folder (for example, 'plus lessons'), you will need to copy the 'lesson 2.htm' and the 'lesson 2.swf' files in the folder "more lessons" in the folder "published lessons."
See also my post http://forums.adobe.com/thread/719598, "Naming project related quirk". Title published a project must have exactly the same name as its file cptx for other projects to be able to link to it.
I hope this helps.
Trevor
-
Can I export Essbase outline and import the schema?
I want to export Essbase to an Essbase outline and then import the plan to another server to Essbase. Can I do this? It is very complicated?If you want to migrate all of the cube, you could just copy the file .otl from one server to another. If you want to dimension by dimension, you can use the puller contour available at applied olap, or maybe ODI or the outline of the Star Analytics extraction tool. Versions of the first and the third are available free of charge through the genorosity of these companies
Maybe you are looking for
-
Why my icon of the password box has been removed from the toolbar and how I put back it?
I use the password box to manage my passwords. When I first installed, an icon on the toolbar has been installed. After a recent update of Firefox, it disappeared. I downloaded the app for Firefox but have no idea how make it work. It is activated an
-
Firefox sometimes want to load the version 3.6.4 update even if the version is already 3.6.4
Firefox want to update the version 3.6.4 even if the version is already 3.6.4and if she won't update, he's looking for server but nothing happens. This has happened Don't know how many times == update version 3.6.4
-
How to convert Imesh mp3 videos so I can sync it to my mp3 player?
I downloaded about 400 songs from Imesh, I am not a monthly member, but am a Subscriber. Some of the songs are in video format, and I can't sync them with my mp3 as the MP3 player, regular. How is it possible to convert these vedios to WMA - MP3 form
-
How can I find my audio device in my computer to reinstall
Remove audio or audio device
-
Good experts, here's your chance to win the Gold Cup. Before this week, I had an old HP with XP Home computer. My monitor is LG Flatron #W2053TP, and with XP Home, the resolution was 1078 x 860 (I think it was the resolution of the screen). Now tha