I created a web part for Sharepoint 2013 which reads the email address from the user that is currently logged in. I'm deploying locally and the only user I have is the administrator which has also no email address yet.
Where can I add an email address for the administrator?
Where can I create a new user account?
Sorry for these basic questions but I'm pretty new to SP and I couldn't find any solution on the web yet.
Thanks for your help!
This depends on your SharePoint instance (if it is on o365 or on-prem).
In case of o365 it is being managed by Azure AD (you can use the o365 admin center to change the email property) and if this is on-prem instance you have to change user property inside your Windows Server Active Directory.
After you do that make sure you run the full sync on the user profile job.
Needs to be done in the Active Directory. Search for "Active Directory Users and Computers" on your machine.
Related
I have created an application, which works for all the windows users (Local, AD, Azure etc). For every user, I'm storing some data inside HKEY_CurrentUer\TESTApp\ registry. Now in the custom credential provider (LOGINUI) once the user enters the credential Wants to read that user HKEY_{...}\TESTApp\ details to know more about the user.
I can successfully store user details in HKEY_CurrentUer\TESTApp\ registry and read details from HKEY_USERS\SID\TESTApp\ if he already login's in.
Now I have the following question,
Is it possible to do the same for not logged in or log out users using either username/SID?
Is there any other HKEY place where I can store the user details and can easily read using username/SID without admin permission? For now, I want to maintain the user details in the machine itself (no cloud).
At last, if the above two is not possible, can I create and read a file with key-pair values in my app workspace without any permission issue?
Since I'm new to windows app development, correct me if I'm doing wrong. THANKS in advance.
HKEY_USERS\SID will be created only after successfully logon on this machine and continue to reside after logout.
If you are talking about logon scenario for credential provider CPUS_LOGON means that your credential provider is working with highest privileges for application - as a SYSTEM user, and you can read and write practically everywhere.
We are using WSO2 IS 5.2.0
We have integrated it with AD/LDAP (using LDAPUserStoreManager). We had userA from AD as our super administrator. Using this user we have registered all our apps under “Service Providers”.
Now because of some organisation changes we have to connect to different LDAP server for user authentication. We have changed the LDAP configuration manually in the user-mgt.xml file to point to new AD/LDAP server and userB from new LDAP is our new super admin.
Problem: We are not able to see the list of APPs that we had registered under “Service Providers” when we login as “userB”.
Question how can we transfer the list of apps (ownership) to new administrator?
We tried to update SP_APP table from backend but it is still not solving the problem.
(e.g. update SP_APP set username='userB' where APP_NAME='TestApp';)
Can someone please help us to know how can we transfer the list of apps under service provider so that it will be visible to new administrator?
When you create a Service Provider (SP), a role is created with it. If the name of the SP is "SomeName", a role is created is "Application/SomeName". Users with this particular role can see (and do any operation) that particular application.
So you need to assign these roles to the new admin user (or any other user that need to see the application) to make the applications visible to the new admin user.
See more information about creating service providers in WSO2 Identity Server in https://docs.wso2.com/display/IS541/Adding+and+Configuring+a+Service+Provider#AddingandConfiguringaServiceProvider-Addingaserviceprovider
I don't see a way through the website administration pages. If I am wrong, please correct me. Most of the searches I found, include ones on this site, said that TFS doesn't have anything built in to change the password.
I have users set up in their own group in Windows and those users have access to certain projects.
A user forgot his password so I was trying to reset it for him. I didn't find anything on the TFS administration webpages and the only place I know to change it is his user in Windows.
When I right click on the user and click change password, I get this message:
If I do it this way, will it update the TFS info? Is this the proper way to change the user's password in TFS 2013?
TFS doesn't have anything built in to change the password.
Correct. Per the TFS Authentication and Access page, there are no authentication options 'local' to TFS itself. A standard implementation of Basic authentication uses Windows user accounts, so changing their Windows user credentials will work correctly in TFS.
This does not "update" TFS; TFS simply queries the respective authority in workgroup/domain environments, and authentication will be successful as long as the user's Windows credentials are entered correctly.
I am trying to add user(s) to an existing group via the function AddUserCollectionToGroup() of webservice "Users and Groups" (Web Reference: http:///_vti_bin/usergroup.asmx).
I call this webservice to add a user who is 'Local Administrator of SharePoint server' to a group and get SoapServerException with inner exception message as 'The user does not exist or is not unique'. But when I check for the users present in the site collection level, this user does exist.
When I try to add other user, say farm admin which is in AD, then it is successfully added.
Am I missing something? Any help would be appreciated.
(I am using Sharepoint Enterprise)
Thanks and Regards
Arjabh
The below link solved my problem:
http://littletalk.wordpress.com/2009/12/14/the-user-does-not-exist-or-is-not-unique/
On this page, it talks about Windows NT, 2000, XP and 2003. Fortunately, I have a Windows 7 machine.
The very first line says:
In User Manager for Domains, create a local user for the ColdFusion
service to log in as.
I don't see a "User Manager for Domains", so do they mean just "Add a new user"?
If it DOES mean that, can I use my own user account as the ColdFusion user, or should I specifically create a new account just for ColdFusion?
If you are creating a domain account it has to be created ON the domain - using user manager for domains connected to your domain controllers. If that's what you need then a sys admin has to help.
If you are doing a "local" user on a windows 7 I always end up hunting around for the right view of user manager before I get it right :) Here are the steps that I use:
Search from start and open the "user accounts" cpl.
Click on "Manage User Accounts"
Click on the "advanced" tab
Click on the "advanced" buttton.
This takes me to the mmc-like view of users that I'm accustomed to where I can add a user, change membership, set passwords etc.
Hope this helps :)
You can use your own username or you can create one for CF to run as. Creating a user to run CF as probably more closely replicates your production environment ( an assumption ) so if production for example writes to a UNC path the coldfusion user must have acces. You could
Mimic this locally.
You can use either an account local to the OS where ColdFusion is running, or a domain account if the OS is joined to a domain. In your case, you can just create a local user on your Windows 7 OS and run the ColdFusion Application Service as that user. The user account will need access to ColdFusion's installation folder, as well as read access to the webroot.
The whole idea is to run the ColdFusion service as a user with the minimum privileges necessary to handle requests and prevent access to other resources in the event of a data breach or remote code execution (e.g. someone exploits an upload form and manages to get their own CF code to run on your server; it's not pretty but can be somewhat restricted by running the CF service under a user account with restricted access).
As someone else mentioned, if CF needs access to other network resources, the user account will need to be granted access to those resources as well (either by using a domain account or having a local account with the same username and password on the remote system).
Just did this on Windows 2008 R2 with CF 10. The trick was to change the ownership of the c:\windows and c:\windows\system32 directories as outlined here.
change ownership from trustedInstaller