Hello,
After configuring an Exchange Server 2010 in Quest 6.1 Manager I'm missing the Exchange mapping so I could configure a Exchange synchronization.
The relevant Exchange configuration parameters have been set, the database has been compiled afterwards. The remote execution policies have been set so that one can use exchange commands from the job server machine.
Any ideas what I could have missed or done wrongly?
Kind regards,
Michael
Hi,
Is it possible to add a drop-down box to an approval step?
This is required to add an additional information required later in the decision process.
Thanks
I am trying to setup a policy today for a customer that identifies everywhere that the corporate\domain users group is being used on governed data. Using the below yields 0 objects even though we know there are several folders
And shares where this group is acled. Any thoughts on what I should modify to make this policy work? thanks for your help
(DisplayValue like N'%corporate\Domain users%')
AND ( EXISTS
(
SELECT 1 FROM
(SELECT UID_QAMTrustee FROM QAMSecurityEntry WHERE EXISTS
(
SELECT 1 FROM
(SELECT UID_QAMPolicyRightSet FROM QAMPolicyRightSet WHERE Ident_QAMPolicyRightSet like N'%AllowRead%') as X
WHERE X.UID_QAMPolicyRightSet = QAMSecurityEntry.UID_QAMPolicyRightSet
) ) as X
WHERE X.UID_QAMTrustee = QAMTrustee.UID_QAMTrustee
) )
Do the email templates have any tags for logic and flow control? (IF, FOR), etc
Hello,
We get this error frequently in the portal when sponsor is trying to create a user.
"Employees. Viewing permission denied for value "Last name"." (IDMScreenShot)
Can anyone tell me why this happens?
I think it might be occuring when the user try to create an account and there is already one with the same first name last name.
Typically a popup will open stating a user already exists would you like to save. (IDMScreenShot2)
So i'm thinking it has something to do with the permissions to view the existing accounts in the DB.
I have not had much time to investigate but i thought i post and see if anyone had a qucik fix.
Thank you,
Lucius
Hello,
In order investiguate on issues, we need to copy production database in another environment.
The customer want to create a task to copy the database every day and maintain the two environments with the same data.
We are using RMAN to copy the Oracle database and then we run a SQL script to set some specific values differents on the two environments (mainly obects in the following tables: DialogDatabase, Hardware, JobServer, Server).
Finally we have to run database compilation with database compiler to generate an other database id, before use the second environment.
In order to have a complete automatical procedure, we want to run this last step within a script.
This is why we are looking for information to run database compilation within script.
We found an initial response by analyzing sql request (in v$sql system view)
Generate a new database id:
declare
v_newPK nvarchar2(38) := newid();
begin
update dialogdatabase set ...
Run database compilation with a stored procedure:
BEGIN vid_CompileDatabase(); END;
We are really grateful for any help on the subject. 
Serge
Hi,
I'm usong the web designer to customise the interface for my customer.
When I'm opening a popup I would like that when I type "Enter", then the popup closes and the action is triggered (see below)
I tried adding a HTML attributes to do this but without any success 
Dou you know where can I define this ?
Thanks for your help,
Regards,
Steph.
Hi,
based on some Group Audit recommendation we have to build up a authorization concept for using the IAM manger tools for the support staff. As an example they should not be able to administer their own accounts. Further we have a support team located in three different hubs (EMEA, Americas, APAC). Each team should only have write access to THEIR people / requests, shop maintenance should only be done in EMEA.
In general I know the features of the permissions section in the designer.
My question is: Could anybody share good practices / experiences / some code snippets / anything else :-) about defining permissions in IAM ?
Any comment is appreciated. Thanks in advance
CU
Wolfgang
Hi all,
So I've successfully configured calculatePWOs for ADSAccountInADSGroup and all membership assignment is working well...but now customer wants to test direct membership "removal" in AD, and after sync'ing, membership is still assigned in IT Shop (and manager). I'm thinking, this is because the ADSAccountInADSGroup relationship is already deleted from the table by Calculate PWOs method? Is this correct, or will I need to use another method to clean up member removal which "could" occur directly in AD? If I use UNSAccountInUNSGroup instead, will this allow the relationship to still exist in ADSAccountInADSGroup and still be deleted directly in AD? Or am I just missing something and maybe have configured something wrong. Thanks again for any guidance!! I continue to learn lots from everyone here!!
Kenny
Can any one guide me to import the Historical data in to the Quest Identity Mananger
Hi together,
In the webdesigner, the standard icons e.g. used by the module VI_Menue_Line have "URL" as source.
For example the big user icon "User_48.png" is not available in a library but its called via a link.
So, to get the picture displayed you have to know the correct filename.
My question now is:
Is there a way to see which icons exist in the standard, as they are not findable for me.
I would need an icon like the "User_Plus_48.png" image but instead of a "Plus" symbol i would need a symbol like a check mark - does something like this exist?
Thanks in advance,
Joachim Lingelbach
Hi everyone,
to comply with corporate guidelines on application layout, we exchanged the report VI_Reporting_DefaultTemplate, which is used to export WebDesigner grid results into PDF documents. We realized that this report only contains the PageHeaderBand and PageFooterBand definitions. The column header line is still using the old (standard) layout. Does anyone know where this is defined and how it can be altered?
Thanks a lot,
Oliver
Hi there,
I have a problem with the tree control.
My tree is constructed like the Tree in the component VI_UserMenu, but without any redirect to the site.
In the first container of a level I define the following style information:
if (IsSelectedItem ())
then
variable ("background-color:% VI_Common_Color_Blue_8% color:% VI_Common_Color_ColorBase1%;")
else "foo: bar;"
The function IsSelectedItem () is:
(from Departments select current isnull (IsSelected, false))
The selected element will therefore be colored blue. This also works without any problems.
1st-Selection:
However, when I select them a second element in the tree, the Style of the first element is not reset. This happens only after a reload of the Site or the expansion of a treenode.
2nd Selection
After expanding a node:
Therefore, I think this is a bug within the Ajax-Control. Is there a workaround or other solution to visualize only the marked Element in a tree without a redirect?
Thank You in advance & best regards
Martin
When accessing certain objects in the WebPortal as a user I am getting errors on some objects. The screen displays -
An error has occurred while processing your request. Please contact your system administrator.
Looking in the logs of the WebPortal nothing is showing up as an issue.
It seems that items such as Primary Location, Primary Department, Primary Business Roles in the overview all cause this to happen, but some items such as Resources do not.
Using the same user in Identity Manager, the user is able to click on the objects from the Overview and navigate with no issues.
It sounds like some permissions type issue, but as nothing is being logged I cannot see where to track this back, has anyone seen anything similar?
Hi there,
I have a (feature) request regarding the component "VI_ITShop_ProlongateOrCancel"
Because of the deactivated configuration parameter "VI_ITShop_ApproverCanSeeShoppingCartOrder" an emtpy toolbar button is displayed in the column 'Actions'.
Therefore the questions.
a) Is it possible in a next release/Hotfix to hide the button or column if there are no elements present? Or to visualize it otherwise.
b) Is it possible in a next release/Hotfix to define an additional configuration parameter which controls the visbility? After all, this Gridview is not for an "Approver".
I know it's easy to customize, but my customer prefers VI-Objects :-)
Best regards
Martin
Hi community,
we need to prevent a process to be executed during a daily target system reconciliation. The process cascade is defined as follows:
1. Read the target system data and store it to a custom table via import script
=> This generates Inserts, Updates and Deletes on the custom table.
2. Update templates on UNSAccountB (as reaction on updates from step 1) via ExectionTemplate-job.
=> This generates updates on UnsAccountB
3. Updates on UnsAccountB (with the involved XproxyContext) generate communication with a REST-webservice
We need to suppress step 3 but not step 2 in the cascade (and only in this cascade, not in general!). Normally we archive this via Connection.variables, but setting and removing them in Step 1 prevents only step 2 not step 3 with proper generating conditions from execution.
=> The connection.variables seem to be inherited one process generation only.
An idea is to use configuration parameters instead of connection.variables, but this doesn't feel right. Additionally we can't use generating conditions that lean on data diffs ($test$[o]<>...) aso...
So, what is your suggestion?
Thanks a lot,
N.
Hello all,
For current customer application group membership to work, the following attributes need to be written when assigning users to groups (see link for further details http://www.novell.com/support/kb/doc.php?id=10101120):
LDAP user:
-securityEquals
-groupMembership (this one already happens OOB)
LDAP group:
-EquivalentToMe
On the LDAP side, for this to happen (manually or by direct assignment), the following LDAP commands are run on group:
changetype: modify
add: equivalentToMe
equivalentToMe: cn=username,ou=users,etc...
and on the user:
changetype: modify
add: securityEquals
securityEquals: cn=groupname,ou=groups,etc...
Now in Q1IM, this relationship is created using the "LDAPAccountInLDAPGroup" table (and also UNSAccountInUNSGroup), and in the mapping definition, I can map LDAPAccountInLDAPGroup to the target system class "top" (where attributes equivalentToMe and securityEquals live). I can also map LDAP account directly to attribute securityEquals and LDAP group directly to equivalentToMe...but not sure if that's required or correct method???
Also, do I need to update the XYZ_LDAPAccountInLDAPGroup_Insert_SyncNS process to add these attributes to the corresponding sql record that is created for account in group (would require schema ext)...and then sync those over?...or is it something simpler than that like through a script where we can send parameter values over with a direct connection to LDAP?
Thanks always for any guidance!!!
Kenny
Hi all,
I've copied the VI-StandardWeb by using the corresponding wizzard. In the first step I've marked all vi-standard-web-menus so that they are copied into my new webproject. After the wizzard has finished and the new webproject is available in the webdesigner I am not able to customize the menu entries (add new submenus etc.), there are no entries visible in the menu-structure-node. Nevertheless the menus are available in the preview of the webshop. I'm able to add new menu-entries on root-level.
So, how can I customize the copied menu-items??
Regards,
Thomas
Hi All,
I have configured Active Directory in Q1IM 6.1 installation. In AD domain configuration wizard, i have given AD synchronization Server as one of the Job Server name (AD_JobServer1). How can i configure fail over? If AD_JobServer1 box is down, how can i move all jobs into AD_JobServer2 box?
Do I need to manually change Domain configuration value to AD_JobServer2 or is there any other way?
thanks in advance.
Jai.
Hi
I was looking for documentation how to solve typical use case when the user request for example mobile device. My questions is
How to create custom request form with fileds (combo box, radio button, etc) with some data prepopulated for some fields or with option to choose from list for the others.
Is there some documentation "How to..." for this kind of use cases?
Best
Mariusz