AD Server Access - Aspect Directory.
Iam getting an event junk in service event list on "Service Structure"
Priority Object Name Message
2 AspectDirectory_Basic_AS01 Transaction cancelled ADserver Access is Denied
on Primary aspect server.
Aspect Directory on redundant servers are synchronized and running.
afwsysinfo -csd returns no differences.
I have checked, as per the suggestion on the previous post and the observations are
There is a restricted user who has no permission to operate, but have permission to read and enter the environment.
This particular user when opens an operator workplace, it generates the above mentioned event.
Does this user need additional permission to open a operator work place.
Voted best answer
Hi,
This user should be the member of "Everyone" group for "Read" and "Enter Envionment" permission.
Answers
Hello,
Is this problem is for all users or few users?
Try the following:
Generally AD gets accessed through the "configure" permission in the user str, so ensure there should be only configure permission in the security definition for the users in the user structure.
If other permissions are added it's not recomended to add other permissions in the user str except "configure" permission.
If no configure permission add the same and observe for the service event list.
Add new comment