Getting below error
User IFSADMIN is not allowed access. Most likely causes: * User not set as Active. * User is not granted connect privileges. Contact your system administrator if this condition persists.
Authentication method is used as database. FND_ENDUSER is given via FND_ADMIN user but not specifically. Can someone assists to trouble shoot this issue
Hello
I am trying to understand your issue.
Who has the issue a regular user or IFSADMIN?
If your question is about a regular user. It looks like the person is not active.
1- access create a user page
2- Right click on the header and select “Active User”
3- Check the box - Active user
4- Save your change
5- After you save - the user should be active
I hope this help!.
Thanks,
JL
Hi,
Thanks for the detailed reply on this .
Issue is with only IFSADMIN user. User is active and from database end using sql plus we can connect to the database using the IFSADMIN user.
Hello
It will be good if you provide a screenshot to see the message you are getting when you try to connect to IFS.
I wonder if you have the permission set EU_ENDUSER enable?
Thanks,
JL
Hi,
We have granted FND_ENDUSER permission. It has been granted via grantee roles FND_ADMIN,FND_TRANS_MAN,IFS_ALL and RU_TEST. Attached permission sets are given to IFSADMIN user.
Thanks and Regards
Jayanidu
Hi
Hi,
Yes security cache refresh several times. EU_ENDUSER is not listed under permission sets. May I know what grants should *_ENDUSER roles should posses?
Thanks and Regards
Jayanidu
My IFS for FND_ENDUSER has similar set up like your.
SELECT username,
CASE WHEN account_status = 'OPEN' THEN 'ENABLED' ELSE 'DISABLED' END AS "ACCOUNT_STATUS"
FROM ORACLE_ACCOUNT
where USERNAME = 'IFSADMIN'
My last shot => what about cleaning the 2.0 folder in your computer.
The one located C:\Users\%username%\AppData\Local\Apps\2.0
I will not delete them. I will back them in some place in your computer just for backup purpose or plan B.
restart your computer and try to log in to IFS
Thanks,
JL
IFSADMIN user is enabled. Do we need to clear the 2.0 each time permission sets are been modified ?
SQL> SELECT username, CASE WHEN account_status = 'OPEN' THEN 'ENABLED' ELSE 'DISABLED' END AS "ACCOUNT_STATUS" FROM ORACLE_ACCOUNT where USERNAME = 'IFSADMIN' ;
USERNAME
--------------------------------------------------------------------------------
ACCOUNT_
--------
IFSADMIN
ENABLED
Hi, I am trying to understand your issue. You have granted FND_CONNECT role?
You are able to login user via sql but not in IFS. FND_CONNECT role is required for user.
I hope this help.
Hello
No, you do not need to clean the 2.0 when you change a permission set. However, when I have users failing to authenticate, sometimes cleaning the 2.0 folder work.
Did the 2.0 clean work for you?
yes FND_CONNECT is granted
FND_WEBCONFIG is not listed in all permission sets. Could you please check and let me know what are the roles assign to it?
FND_ADMIN and FND_RUNTIME are granted from other roles such as IFS_ALL .
Hi
Do you get any results for the below query when running it in the SQL Plus after connecting to the database.
select grantee,
granted_role,
default_role
from dba_role_privs
where default_role = 'NO'
I think the default_role is always ‘YES’, but I had one situation that one of our customers had a login issue with one user, and it was found one of the required role has “NO” flag for default role, due to some reason. It was resolved after changing it to YES from database end.
Just remembered, so thought to share with you, if the same would have occurred here as well.
Thanks,
SQL> select grantee,granted_role,default_role from dba_role_privs where default_role = 'NO';
no rows selected
SQL>
Hi
In my case it was IP not whitelisted from reverse proxy settings. It was nothing to do with permission sets . Sometimes the error handling is not giving the correct message.
Regards
Jayanidu
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.