Show TOC

Function documentationUser Resources Locate this document in the navigation structure

 

You use this report to find all objects that are connected to a specific principal (user, group, or role).

You can perform the following actions:

  • Unlock all items that were locked by a user.

  • Find all objects that have properties connected with a specific user.

  • Find all objects that have an ACL with entries for a specific principal or with a specific principal as the permission owner. You can transfer these entries to another principal.

Prerequisites

You have assigned the appropriate permissions to the cmadmin_service service user. If you want to transfer object properties such as Created By and Modified By from one specific user to another (for example, when a user has been deleted), you must have the Set System Properties permission assigned to the cmadmin_service service user.

To assign the required permission, choose   Content Management   Utilities   System Principals   System User  , and then open the cmadmin_service user for editing. Select the Set System Properties parameter, choose OK, and then restart the Application Server Java (AS Java).

Features

You can configure the following settings for this report.

Scope

Parameter

Description

Location

You must determine the scope of the report and restrict the report to certain repositories or folders (including all subordinate folders). Specify all repositories and folders that are to be searched.

Maximum Results

The system terminates the search when it has found the corresponding number of items.
Parameter

Parameter

Description

Unique ID for Principal

Unique ID of a user, group, or role for whose objects you want to search.

You get the unique ID in the portal at   User Administration   Identity Management  . Search for a user, group, or role. Select the required entry. The unique ID is displayed on the General Information tab page.

You can specify multiple unique IDs separated by commas and spaces.

Example: "ID1, ID2, ID3

Search for Locks

Finds items that were locked by the specified user.

Not valid for user groups or roles.

Search for Permissions

Finds items for which the given user is entered in the access control list (ACL) for the item.

Search for Service Permissions

Finds items for which the specified principal is entered in the access control list (ACL) for service permissions (ACE/Access Control Entry), or for which the principal is the permission owner.

Search for Properties

Finds items in which the given user is entered in the Created By or Modified By property.

Not valid for user groups or roles.

Skip Principal Existence Check

If you select this parameter, the system does not check whether or not the principal exists. This allows you to find deleted users, for example.
Commands

Command

Description

Transfer to Another Principal

Removes the given principal from the list of permissions for the item and inserts the new principal. In addition, the new principal replaces the given principal in the Created By and Modified By property entries.

You cannot transfer permissions if you searched for multiple principals.

Unlock

Removes the lock on the item.

The following items are listed in the results of the report:

  • Items created or modified by the user entered

  • Items in whose ACLs a specific principal is listed

  • Items locked by the user entered