Creating a public ACL w/o user having SysAdmin privileges

I am calling an SBO from a TBO to create a public ACL. The problem is the logged in user (who would do a save and trigger the TBO code) is not a SysAdmin.

However, since the code to create the ACL is in the SBO, I was wondering if I could use a SysAdmin's login credentials to create a new session in the SBO and then create the ACL.

I did try it but I get an error:

[DFC_BOF_WRONG_IDENTITY] LoginInfo and Principal for "DevRepo" docbase are not defined or wrong.;

The error does make sense but I would like to know if what I am trying to do (i.e create a new session in SBO) is possible at all.

If it is, how do I do it?
If not, are there alternative ways of handling this issue?

TIA for all replies,

Tripti

Find more posts tagged with

Comments

DCTM_Guru

Where are you getting the username/password from? Worse case scenario, you can always create server method and configure it "Run As Server" and this should do the trick.

Trupthy.Bharadwaj

The username and password of the SysAdmin user? I was thinking of reading a config file (not sure if that is the recommended approach) - currently, I have hard-coded it in SBO code.

Thanks - I will look into creating a server method (which I assume will run as the docbase or install owner?).

Trupthy.Bharadwaj

I found this on the forum which addresses the same issue

https://community.emc.com/message/88700#88700

I will try the suggestions in this as well

Trupthy.Bharadwaj

I tried creating a "super user" session within the SBO (as suggested in the link in my previous post.

It did not work, I get an error:

[DM_SESSION_E_AUTH_FAIL]error: "Authentication failed for user <installowner> with docbase <repo>."; ERRORCODE: 100; NEXT: null

Is this because SBO code executes on the client macine and not on the content server host? At least, that is my conclusion - but I may be totally wrong

Looks like I have to write a server method to create an ACL as the "install owner".