SharePoint 2007: All you ever wanted to know about User Profiles

Posted on 7/8/2007 @ 12:11 AM in #SharePoint by | Feedback | 126853 views

There seems to be a lot of misinformation about this particular topic, so I am just going to type out what I know, and everyone please add/correct as you consider necessary. Also if there are other Q's that can be answered about User Profiles, please leave the questions as comments, and I'll add the answers when I can.

What are User profiles?

In SharePoint 2007, a userid is uniquely identified by his/her username. The username is tied to the membership provider that the site is configured to authenticate against. A user however has a lot more information about him/her other than just their userid. For instance, they may have a phone number, email etc. All this information goes in the user profile.

Why are user profiles useful?

User profiles are helpful because they let you see a user as "Sahil Malik", not "smalik", they let you use use features such as email alerts (email addy is picked from the profile), they let you create neat org charts, they let you search based on profile properties, and let you do audience targeting.

When/Where is User Profile information retrieved from? And where it stored?

When WSS or MOSS are first installed, every sharepoint site will try and connect to the AD and pull in some information about a user, the first time the user is accessed by the site. This information sits in the UserInfo table in the content db of the site. All other profile information sites in the SSP's database.

Read that again carefully :-), "This information sits in the UserInfo table of the content db of the site". In other words, Say if Miss Jenna Jameson gets married and changes her name to Jenna Ryan, her profile information stays "Jameson", until of course some external force forces this information to stay up to date.

For a schematic on how user profile info flows through your MOSS install, click here.

How can profile information be kept up to date?

Simple answer: Using the Shared Service Provider associated with the site. You have to configure the SSP's user profile import however. For instance, you could set the SSP to import from the AD, ADAM, or LDAP, or BDC (supplemental information only) using an incremental schedule, and that information is then subsequently synched down to the individual website. This synch occurs, thanks to a pre-configured job called ProfileSynch.

How can profile information be kept up to date, if in case I am not using MOSS (and have no SSP)?

Use this utility -

http://blah.winsmarts.com/2007-1-SharePoint_2007_Utility_-2_-_PI_-_Utility_to_Import-Export_actual_user_profiles.aspx

How can I synch profile information from a LOB application, if I don't have BDC?

Use this utility -

http://blah.winsmarts.com/2007-1-SharePoint_2007_Utility_-2_-_PI_-_Utility_to_Import-Export_actual_user_profiles.aspx

How can an end user maintain his/her own profile?

Using MySite, or "My Settings". For instance, the user could specify their email address using that link. Now of course this depends on:

a) Do the users have the appropriate permission to perform this action? Users can be granted the specific permission to keep their profile information up to date, (How to? See http://blah.winsmarts.com/2007-4-SharePoint_2007__Fine_grained_permission_control.aspx)

b) If you have "My Sites" enabled, then this information is updateable from within My Sites, not "My Settings".

BTW, It is not inconceivable that you may want to write a custom aspx that uses elevation to allow end users to maintain their own user profile. This is so because frequently My Sites are disabled, or permissions are locked down. Does this suck? A tad bit! But this aspx isn't terribly hard to write.

How can an administrator maintain the user profiles of users?

3 Answers:

a) Using SSP, and the information synchs down.

b) Using People and groups, userdisp.aspx i.e. click on the user's name and edit him/her. Alternatively, create a custom view/link that goes to http://yourmosssite/_layouts/userdisp.aspx?id={UserID}&Force=True on people and groups, and it'll allow the admin to edit user profiles. Note: This won't work if My Sites is enabled. For my sites, use option #a.

c) Use this utility - http://blah.winsmarts.com/2007-1-SharePoint_2007_Utility_-2_-_PI_-_Utility_to_Import-Export_actual_user_profiles.aspx

How can an administrator delegate "profile maintenance"?

Easy.

1. Individual users can edit their own profiles as long as they have the "Edit Personal User Information" permission allowed. See http://blah.winsmarts.com/2007-4-SharePoint_2007__Fine_grained_permission_control.aspx

2. A group can be setup with "Manage user Profiles" permissions in the associated SSP.

... anything else? :-)

Sound off but keep it civil:

Older comments..


On 7/10/2007 10:55:59 PM David Tappan said ..
One question I have is, when you are synching some user profile properties from AD, and some from a BDC connection, how does SharePoint match the users from AD to the users in the BDC data source? Does it match on a particular attribute, like userID? Is this configurable, so it can match based on another property?


On 7/15/2007 1:58:04 PM Sahil Malik said ..
David,

As I answered in the BDC/user profiles link that you can see above, you specify a key column for the matchup. Yes it is configurable.

Sahil


On 8/15/2007 12:58:37 PM Maarten said ..
Off topic question, but how do you go about making an audience based view of a search scope. For content in SharePoint it's of course pre-filtered by security context but for content on file shares and DFS the same filtering doesn't apply and trying to get my audiences to be bound to there department share.


On 8/21/2007 12:02:06 PM Tim said ..
Very useful info. Question: Can you tell me where a users "My Links"/Personal bookmarks are stored?


On 8/21/2007 1:12:06 PM Krishnan said ..
"...and that information is then subsequently synched down to the individual website. This synch occurs, thanks to a pre-configured job called ProfileSynch."

The ProfileSynch job doesn't seem to synchronize user profile information to WSS sites in my case.


Our MOSS environment was a gradual upgrade from SPS 2003. It consists,


one MOSS site http://mymoss/ and


several WSS sites: http://mymoss/sites/wss1 ... http://mymoss/sites/wss12.


It has an SSP, and AD profile synchronization works perfectly. But, the profile information doesn't pass on to the above WSS sites.

Any idea on what could be done to sync the WSS profile info with MOSS profile info?!


On 8/22/2007 9:13:02 AM Andy said ..
We want our secretary to maintain profiles for staff.

Re 'How can an administrator maintain the user profiles of users?'

a) Using SSP, and the information synchs down. - we don't want to give her access to SSP.

b) Using People and groups, userdisp.aspx i.e. click on the user's name and edit him/her. Alternatively, create a custom view/link that goes to http://yourmosssite/_layouts/userdisp.aspx?id={UserID}&Force=True on people and groups, and it'll allow the admin to edit user profiles. Note: This won't work if My Sites is enabled. For my sites, use option #a. - We have MySites enabled.

c) Use this utility - http://blah.winsmarts.com/2007-1-SharePoint_2007_Utility_-2_-_PI_-_Utility_to_Import-Export_actual_user_profiles.aspx - would much rather she can edit them ad-hoc when needed.

How can an administrator delegate "profile maintenance"?

Easy.

1. Individual users can edit their own profiles as long as they have the "Edit Personal User Information" permission allowed. See http://blah.winsmarts.com/2007-4-SharePoint_2007__Fine_grained_permission_control.aspx

This works fine for the user to edit their own profile.

2. A group can be setup with "Manage user Profiles" permissions in the associated SSP.

How does this group then actually edit the profiles?

Thanks for any help! Sorry for my ignorance - pulling my hair out trying to work this out...


On 8/22/2007 12:59:44 PM Sahil Malik said ..
Andy - you're very close to the answer. Once you create a group with "Manage user profiles", all you need to do is, change the querystring (userid) to the user profile edit page. This can be made absolutely seamless by creating a view.


On 8/22/2007 7:10:58 PM Eric Portney said ..
Hi Sahil,

In my SSP I have created some custom fields (for data like Work Phone Extension). This data is stored in the SSP, however I don't understand how to export these new fields to the UserInfo table in my MOSS site. If I add a column to the UserInfo table, will the data sync the new custom columns along with the rest of the columns already being synced?

Thanks in advance for any insight,


Eric


On 8/22/2007 9:45:00 PM Andy said ..
Thanks Sahil,

When I attempt to access say http://mysite.blah.com/_layouts/EditProfile.aspx/UserID=userid it just loads the edit profile page for my own account.

I have tried domain\userid, userid, fullname as the userid variable but no joy.

Am I missing something?


On 8/30/2007 4:02:02 PM Terry said ..
Sahil,

All of a sudden none of my "my site" users can access their document libraries, they get an "access denied" message. Could you point me in the right direction to start troubleshooting this issue? I originally setup SP with a domain admin account and the password was changed on that account so I had to setup another one. Could this have caused this situation?

Thanks,


On 9/7/2007 2:38:56 PM Doug said ..
Hi,

I'm not getting sync with People and Groups. I have full and incremental sync from AD to MOSS working. If I look at the profiles via SSP they are there and take all the changes I might make in AD. If I look at these profiles via a user's My Site (this is a testing environment) the changes made in AD are there.

However, if I look at a profile in a group (for example the default Visitors group in the root site) the changes made in AD and NOT there and I can't edit the profile from there.

So I have sync working "everywhere" but People and Groups.

Thanks,


Doug


On 12/5/2007 4:15:49 AM ramya said ..
Hi,
I have a problem in my sharepoint portal, when i give a user VISITORS PERMISSION he is getting access denied error but when i give MEMBER PERMISSION for the same user he was able to access the site.
I have three customized webparts in that particular site.Tree view webpart with the subsites listed in tree view structure.Do i have this problem because of this web part.Im struck up
with this problem for the past three days . I have noticed one more thing when i remove this
tree view webpart then its working fine.
Any solutions is greatly appreciated.

On 12/10/2007 5:54:02 PM Alisha said ..
When users leave our organization, a notification is sent to their manager about their my site being scheduled for deletion. I can't seem to find the settings for that notification.

Also, I can't get to those sites that are "scheduled for deletion". Although they are still listed in the database. I can't figure out how to access them and get any useful information.

Thanks for the help.

On 12/18/2007 2:09:01 PM Toby Hosterman said ..
I'm looking at a migration from our current production intranet on WSS v2 to a MOSS 2007 implementation. Previously, with WSS v2, I've had occasion to migrate my v2 site to another v2 site in a different domain. This was accomplished by using stsadm to backup the site and restore it to the new server in the new domain. The problem I had (which I believe mirrors my current situation) was that my userid's in the userinfo table were all pointing to the wrong domain. I created a quick query to manually change the domain references; and I manually updated any user name changes. Then, I found a sql script that very nicely changed the user SIDS in the userinfo table to match those of the users in the new domain.

SO.... now I'm looking to migrate to a MOSS 2007 implementation. It's hard to copy my list data over when the "assigned to" and other user reference fields don't have all the users populated because nobody's logged into the new site yet...

Are you familiar with a process (newer and hopefully more supported than my previous effort) to proactively populate a site collection's userinfo table with all the existing users from a WSS v2 installation? Of key importance is keeping the userid refernces consistent so the imported list data still matches the proper users properly.

Sorry for being so wordy... Any help is appreciated.


On 1/28/2008 6:47:00 PM ehelo said ..
1) Go to Sharepoint Server (physical server), Click Start -> Microsoft Office


Server ->


Sharepoint 3.0 Central Administration.


2) Login as administrator, on the left pane click Shared Services


Administration.


3) Click the default Shared Services by default it's SharedServices1. Login as


administrator.


4) Click user profiles and properties.


5) Click view user profiles.


6) User list is displayed. To edit the email address click the dropdown menu and


select edit.


On 1/30/2008 1:44:36 PM Craig said ..
Yes, the SSP can sync information down to the site level, until it hits unique permissions, then it stops.


On 2/4/2008 2:57:57 PM Ned said ..
Is there anyway to get this userprofile information into a web part (or some other way) so it can be used as an employee directory?


On 2/6/2008 9:32:20 AM Ingram Leedy said ..
Can ProfileSynch remove user profiles from MOSS if the user has been deleted from the AD? How can we get the user profiles in MOSS to get cleaned up automatically?


On 3/13/2008 4:54:34 AM Aditya Rao said ..
Hi....I have added a user in Viewer group....and when I log by his name I am getting an error of Access Denied...on the homepage....also when I add a user in Owners group...he is not getting access....can anyone suggest me what to do???


On 3/19/2008 5:26:05 AM sacchit said ..
Hi,


Can you let me know how to get the mysite fields in the user information list of a site collection.Please let me know !!


On 4/22/2008 2:18:43 PM Rich said ..
What about implementing a user registration process? We plan on implementing an extranet site. Using a custom provider, users who first access the site will be checked against a participant table. If enough qualifying information is received then an account will be created in LDAP and profile data is taken from the participant list and added into LDAP. It is at that point we would need to push the data added in LDAP to the user profiles in SharePoint and allow it to sync the data from then on.

Does this scenario sound plausible?


On 4/27/2008 3:26:20 AM Waseem Hyder said ..
Can you let me know how to get the all users mysite contents in sharepoint 2007 from sharepoint 2003. (We upgrade our sharepoint 2003 to sharepoint 2007, but when any user try to see his/her MYSite on Sharepoint 2007 no previou documents or old content (related sharepoint 2003) are not appear). Please can anyone suggets me what to do?? (but others document are available only user MySites are missing data)


On 4/28/2008 4:43:23 PM Paul said ..
We want users to update some details (phone etc) via their My Site page, but how do we then sync this back to AD before the next profile import?


On 5/8/2008 3:04:50 AM Muneyi said ..
Hi

I would like to create a custom aspx that uses elevation to allow end users to maintain their own user profile . My client does not want to activate my sites , becuase only one group wants to make these edits . How does one go about creating this.


On 7/1/2008 9:16:08 AM Steve D said ..
I have the exact same problem as a previous post stated below


Has there been a resolution to this? Does anyone know the answer?

"On 9/7/2007 2:38:56 PM Doug said ..

Hi,

I'm not getting sync with People and Groups. I have full and incremental sync from AD to MOSS working. If I look at the profiles via SSP they are there and take all the changes I might make in AD. If I look at these profiles via a user's My Site (this is a testing environment) the changes made in AD are there.

However, if I look at a profile in a group (for example the default Visitors group in the root site) the changes made in AD and NOT there and I can't edit the profile from there.

So I have sync working "everywhere" but People and Groups.

Thanks,


Doug"


On 7/10/2008 8:00:34 AM Michael Barends said ..
Hi Steve take a look @ my blog post here it will enable you to edit the data.

The 2nd thing it will take some time to see your changes in the normal sites an replicable must be enable on the fields in you SSP

blog post: http://softwaresolutionsleones.blogspot.com/2008/07/moss-and-editing-user-profiles.html

Kind Regards Michael


On 7/23/2008 1:48:33 PM Cliff said ..
Does functionality already exist within SharePoint to Delete User Profiles when the Users are 'deleted' from, or disabled in Active Directory?

I wrote a program to read all of the Users in AD's OU='Disabled User Accounts' (where all of our Users are moved when they are no longer 'active').


Then I execute Microsoft.Office.Server.UserProfiles.UserProfileManager.RemoveUserProfile(Guid guidDelete).


The program apparently deleted the profiles, but they were back again the next day, with different GUID's ???

Would deleting a Profile also remove the User from Permission Groups?


Would deleting a Profile 'remove' the associated 'My Site'?


Does stsadm -o deleteuser do the same as Microsoft.Office.Server.UserProfiles.UserProfileManager.RemoveUserProfile(Guid guidDelete)?

Does a comprehensive solution exist for 'cleaning up' users that have left the company, and must be removed from the SP installation?


On 7/30/2008 4:17:02 AM Brigitte said ..
Hi,

I have a question about Personal Views in Document Library. If a user creates Personal Views in several Libraries, where does this info store? Or in different words: if I remove a user, how or where do I remove all his Personal Views?

Thanks for your answer.


On 8/5/2008 9:19:00 AM Owen said ..
I too would like to know if a comprehensive solution exists for 'cleaning up' users that have left the company, and must be removed from the SP installation. I found an article that discusses the issue in MOSS 2003 and provides code using the object model to delete profiles one by one. The article can be found here: http://sharepointinsight.com/blog/Lists/Posts/Post.aspx?ID=3.

Does MOSS 2007 include a utility to remove profiles automatically when they are not included in the last import?


On 8/5/2008 9:59:48 AM Sachin K said ..
Hi,

we have a user filter uery which should only extract enabled users and users with a particular email suffix(mail=*companyname.com). when we run Full import utility the user filter gets applied and only relevant users are imported in sharepoint folder. However the incremental profile import does not seem to use the user filter query and it extracts all the user. Could you please help us diagnose the issue?

Thanks and regards,


Sachin


On 9/19/2008 7:51:42 AM FrostSpark said ..
Hi!

I have an exciting task, which i now try to explane:

I would like to give to everyone a map, where hi/She sit in our building.


However I can't make such a web part, which can recive who's User's profiles page I looking.


For example i search a man, called "János", and the MOSS throws his My profile page to me.


But i would like if on this page have this map, and I want it for every users.


I Tried a so much web part, but i couldn't know how i can make this task.

Can Anyone help me?

FrostSpark


On 10/22/2008 1:37:04 PM Lori said ..
Users get deleted from SSP daily but remain in People and Groups. How can we clean up the profile "subset" of terminated employees?


On 11/28/2008 8:51:31 AM Matej said ..
Hi! I want to import user data to SharedServices, but I don't see all user profiles if I use Microsoft.SharePoint.SPList list = web.Lists["User Information List"]

Then I want to import users to site collection.


Thanks and regards,


Matej


On 12/15/2008 9:54:37 AM costin said ..
Hi ! I have a problem, maybe u can help me


We have a working sharepoint portal and we decided to remove an old server that had the Domain Controler on it. We did this by shuting down the old server when nobody was around and recreated the new domain on a bigger better server. We have been experiencing problems with the general users (restricted users) that do not have instal permision. If i want to add a power user (admin) as user to a site i can do that very easyly but if i try to do the same thing with a restricted (general user) and add him as a contributor to the site he is recognized but when i click finish i get a "user does not exist" error.


How can i fix this problem because i can't make everyone a power user


On 2/3/2009 10:41:22 AM Kerryn Gray said ..
Does anyone know how to give user's access to edit other people's User Profiles? I have FULL permissons on my site, yet when I go to a user's profile via http:<site>/_layouts/editprofile.aspx, all the boxes are not updateable, though everyone can update their own.

The SSP is on a separate PORT and can only be access via VPN. At the moment the Site Admin has to go into User Profiles under the SSP to update other people's User Profiles. Is there a way to give someone the ability to do this without accessing the SSP?


On 2/12/2009 10:43:53 AM Jez Wilder said ..
Unfortunately you CANNOT give users the ability to EDIT other peoples profiles without giving them access to the Shared Services Provider which many firms do not want to do. We only allow PORT 80 to be open. Our SSP is on a different PORT too. This means users can edit their own profile using editprofile.aspx, but no one can update other people's profiles. Our Site Administrator is currently having to do this, as only she has access to the SSP. Giving a user 'Manage User Profiles' will NOT give that user the ability to edit another user's profile using EDITPROFILE.ASPX

We are currently having to work on a WEB PART to do this


On 2/12/2009 10:44:01 AM Jez Wilder said ..
Unfortunately you CANNOT give users the ability to EDIT other peoples profiles without giving them access to the Shared Services Provider which many firms do not want to do. We only allow PORT 80 to be open. Our SSP is on a different PORT too. This means users can edit their own profile using editprofile.aspx, but no one can update other people's profiles. Our Site Administrator is currently having to do this, as only she has access to the SSP. Giving a user 'Manage User Profiles' will NOT give that user the ability to edit another user's profile using EDITPROFILE.ASPX

We are currently having to work on a WEB PART to do this


On 2/20/2009 2:24:58 AM Rahul Khedekar said ..
I want to add custom fields to user profile which doesn't fit into any of the data types provided for user property. Is there any way to add such property to user profile either some configuration or through code using UserProfileManager application?


On 3/4/2009 5:50:21 AM Liv Newport said ..
kerryn, I agree with Jez. We wanted to give our administrators the ability to edit different users profiles using editprofile.aspx too, but for some reason only a user can edit their own profile using this method. Our shared services providers are also on a port which is only accessible using terminal services.

The only way to do this we found was to create a web part to do this. This took about a week to create using the sharepoint object model and works fine.

This is obviously something Microsoft did not consider as in a lot of organisations hr would be expected to update user profiles, but security means that the ssps are locked down. Hopefully Sharepoint 2009? will address this.


On 3/17/2009 7:37:51 AM KC said ..
Hi, We recently moved our company pictures onto a different server. Now whenever we use the People and Groups detail view all the links are broken. Is there an easy way in which i can change these to point to the relevant users Mysite or the new server location?

Thanks for your thoughts/ help in advance :)


On 3/25/2009 3:53:02 AM Lennart Hedlund said ..
Hi!

If I want to hook up a event listener on user profile changes, how can I get that work? It seems like the ordinary eventlistener registration doesn't work.


On 4/3/2009 3:18:59 PM naamidala said ..
My editprofile.aspx was working fine until,I had instered a row in _PROF databases UserProfileValue table for each user,I added for each recordid a propertyid=6 and propertyval=[manager],we dont have this info in AD ,so I had to manually eneter the data into the tables ,so that my Organization Chart would work fine. Its throwing a below error Value cannot be null. Parameter name: binaryForm at System.Security.Principal.SecurityIdentifier.CreateFromBinaryForm(Byte[] binaryForm, Int32 offset) at System.Security.Principal.SecurityIdentifier..ctor(Byte[] binaryForm, Int32 offset) at Microsoft.Office.Server.UserProfiles.Helpers.ConvertSidToString(Byte[] bSID, Boolean isWindowsAccount) I could see in my logs it is trying to access the stored proc "profile_GetUserProfileData" and it is not enetering a @Userid=' ' and it is entering appropriate @NTName and @ViwerRights and @ViwerNTName, Can you pllease help me ,solve this problem. Thanks Naamidala


On 6/8/2009 2:20:28 AM Jack said ..
Do you have any idea why i can not access our Central Administration site in the server where it was installed but i can access through other workstation's browser using its url of http://portal.company.com:1000?


On 6/24/2009 5:10:48 AM KK said ..
Hi,


All of a sudden none of my "my site" users can access shared documents of others in My Site, they get an "access denied" message though shared documents have read permissions to ntauthenticated users.


On 7/30/2009 10:27:34 AM Charles Casey said ..
I have a situation where the user name displayed is different than the user profile. This is only for one user and I am reguarly running user profile imports in the SSP.


A few details. The display name of contractors has CTR added to their Display name field in Outlook. This is then displayed in SharePoint when the user creates or modifies an item or has a task assigned to them. This person changed his position and is no longer a contractor so the CTR is no longer in the Display field in Outlook.


When I view lists or libraries where he has created/modifed it still shows with the CTR added to the name, this aslo show when I do a lookup in SharePoint such as assigning permissions. I have had no iisue before such as when someone changes their title, everything is updated in SharePoint. If you click on his name and it opens the profile page it does not have the CTR and displays everything as it is in Outlook.


Any ides on what could be causing this?


On 7/30/2009 2:15:09 PM Yannick said ..
I add some usefull (I think) information about :


How can an administrator delegate "profile maintenance"?

2. A group can be setup with "Manage user Profiles" permissions in the associated SSP.


(http://<moss srv>/ssp/admin/_layouts/ManageServicePermissions.aspx)


AND group must have a minimal "View only" right, in SSP site permission


(http://<moss srv>/ssp/admin/_layouts/user.aspx)


To manage profils :


(http://<moss srv>/ssp/admin/_layouts/ProfMngr.aspx)


On 8/4/2009 9:44:04 AM Nancy said ..
Thanks for the post.


Is it possible to write a console application that gets it's syncronized information from Sharepoint user profile instead of AD? (That way we don't mess up the AD)


On 8/17/2009 12:33:55 PM madhu said ..
on On 2/12/2009 10:43:53 AM Jez Wilder said ..


Jez did you guys ever build that web part. if so can you share it for the community


thx


On 9/2/2009 3:28:23 AM KISHAN CHETRY said ..
Hello Sir ,I have been using Share point Server 3 from 15 days and came to know how to create website and add users.But i am keen interest to add new my own users in this template,so is it possible for me to do such a task.And if yes then please tell me the procedure.

Thank You


On 11/18/2009 8:48:38 PM MWang said ..
Hi,

First thanks for your valueable work in SP. Your site is always helpful.

Would you please help me with a user profile related problem?

After a user has log in to MOSS site, the MOSS site will hold a copy of user profile in All People list. If a user update or upload his photo in his Mysite, the change is unable to sync to MOSS site automatically.

If I delete the user from All People and add him again to Visitor or Member group, the photo can sync and new photo shows up. I know this is because MOSS site will first look at its own user list, if the user deleted from the list, the MOSS site will grab a copy of user profile from user's Mysite, hence the user profile been manually forced update. But this work around is not ideal, because when you delete a user from All People, this will also delete a lot a sites permission settings and membership settings.

Is there a better way to refresh user profile from their Mysite without mucking up their permission and membership settings?

Thanks your help!

MWang


On 12/2/2009 11:58:17 PM Velmurugan said ..
I need users to be able to write files in a folder (which they cannot delete) and they cannot delete files from another users - only their own. the folder and the list items of others you want to prevent deletion of, but you want users to be able to delete their own list items?How to set permission level.please help me.Thanks in advance,


On 1/5/2010 12:22:11 PM Gerhardt said ..
Hi, in the case of Miss Jenna Jameson gets married and changes her name to Jenna Ryan:

Case 1:Imagine that she changes her last name manually to Ryan from her mysite, but a day later the company's HR system updates her last name to Tyan in AD. Now - when the synch job between AD and SP runs, will her last name change to Tyan in the user profile database?

Case 2:


What happens if the HR system does not change her last name in AD at all. When the synch job runs, how does it know which last name is the correct one to use?


On 1/7/2010 4:10:30 PM RitaRules said ..
Responding to Velmurugan's 12/2/2009 comment.


For Lists:


Go to the List settings. Under the Advanced Settings select Edit Access: Only their own. This should restrict users from editing or deleting items created by other users.

For document Libraries:


You will need to edit the permission level to remove the Delete access. This change will not allow users to delete their own files.


Another option is to allow deletion and enable the Recycle Bin to restore deleted files.


On 2/16/2010 8:59:27 PM Marino said ..
Hi,

I am having a problem importing users profiles from AD... I am using SharePoint 2007 with a Windows 2008 Domain.

SharePoint is on a Virtual Server.

Every time I try to create the connection I get an error stating that my server can not be found.

Please help!!!

Thanks.


On 4/8/2010 3:06:30 PM Edward Abbazia said ..
Has anyone ever successfully connect a Konica Minolta Multi-function-printer ) (MFP) to Sharepoint MOSS 2003 or 2007 so that the MFP can authenticate and upload file s to the server? I keep getting "Auth type not supported" or cannot run "Java Script". I need to get this running...Ed A


On 4/29/2010 3:50:01 AM Paul said ..
Hi,


On my MOSS site, I want that the users have the possibility to see their information in "My Settings", but I don't want that they can see the list of all users of the website.


If I activate "Browse User Information" in the permissions, the user can see his information, but can then click on "People and Groups" and "All people" to see the list of users.


If I disactivate "Browse User Information", the user do not have anymore access to My settings.


Is there a possibility to give the access to my settings without access to "People and Groups" (or All people) ?


Thank you for your help.


On 6/3/2010 7:08:35 PM Nila Gohil said ..
On MySite we have a field which is receives user data from AD.


but that data does not show when i run people search query.

basically i have a web part which displays company directory data by querying people scope using search.asmx service.

we needed to filter users by their active status.

active status data is showing on MySite but not through the service.

how do we synchronize MySite with people scope search.

thanks

-nila gohil


On 7/16/2010 7:08:39 AM Reshma said ..
Hello Everyone,

We are trying to migrate from SP2003 to SP2007 and we are trying to remove access from the SP2003 sites. There are thousands of sites, so I have written a script to delete the users for the site supplied to it from an access database.

The program is however deleting more users than I see under the Manage Users section. Earlier I thought that it could be deleting users from its parent. I created a site with multiple subsites in it and fed the lowest level link to the program (http://spsserver.abc.com/mysites/subsite1/subsite2/subsite3). It deleted only the users from the "subsite3" (as in this example). When I am feeding the original links, it shows as more users deleted. Could there be more users that will be deleted than I see from under the "Manage Users"? I am using the following code to delete the users:

using (SPSite siteColl = new SPSite("http://"+args[0]+"/" + objDataReader["SITE_URL"]))


{


using (SPWeb web = siteColl.OpenWeb())


{

foreach(SPUser user2 in web.AllUsers)


{

web.Users.Remove(user2.LoginName);


Console.WriteLine(user2.LoginName.ToString().ToLower() + " deleted...");


}


}


}


On 7/29/2010 11:40:19 AM R.M said ..
I had a particular case where the organization of the user has changed recently. user profile has been imported correctly from the AD. The user info is getting reflected correctly on all the site collections except one. Can you help me out here.


On 8/23/2010 6:24:46 AM Cristi D said ..
Hello


We have a Sharepoint site configured using only local users. Can anyone tell me how to edit the profile of a user so I can add e-mail adress info ?


I don`t have a SSP, and I would prefer not to configure one.


Thanks


On 8/25/2010 8:12:09 AM Jase said ..
Hi, does anyone know whether it is possible in Sharepoint 2007 to be able to export all User profile data including User Name, Password, Access they have and to which sites, groups and etc.

Thanks in advance for your help.


On 9/13/2010 7:22:24 AM Arri said ..
Hi, we have multiple containers on our AD, I would like to only add the one that is applicable to our company.

Can anyone help me out here?

Thanks..


On 9/24/2010 5:46:26 AM InternIT said ..
Hi,

A user has changes his name in AD, and this is now incorrect on his my site profile.


How can we change his my site profile to use his new name?

Thanks in advance for your help.


On 10/14/2010 10:25:21 AM URi said ..
I cant seem to be able to find the PI import/export download (build one)

of course i went to the links provided here, once that didnt work. i went to google which also directed me to the same site (which doesnt have the build to download) I can get the source code, but have no idea how to compile this..

deadline is so near :) - deadline is such a wonderfull word.


On 11/11/2010 6:07:32 AM Sachin said ..
HI,

I have an issue while i am going to replicate user profile through user profile replication engine utility.

When replication run and if there is any escape character ( like &, < , >, etc)in any attribute like Name, City, Compnay Name then the escape character will convert into there Entity Name like & will convert ;&, '<' convert into ;lt etc on destination side.

Please help me to Resolve this issue.

Thanks in advance.


Sachin


On 12/22/2010 10:44:27 AM Dismantle Me said ..
If you are looking for a way to let users update information in Active Directory which gets synced back to SharePoint, we developed web parts for 2007 and 2010 which will do exactly that. It's much easier to let people update their own info.

http://adselfservice.codeplex.com


On 2/16/2011 6:07:20 AM Novorski said ..
Hi,


how to include the Profile page progress meterin moss2007?


Thanks in advance.


On 3/16/2011 6:33:58 AM Alex said ..
How to force MOSS get information from AD _before_ the user is accessed by the site via object model? In my custom workflow initiators assigns tasks to users who never login to the MOSS (they are available via people picker)


On 3/25/2011 8:59:09 AM Vishwas said ..
Hi Sahil,

Thanks for the post....Very useful...

I actually have a problem in running the sync job,...as soon as i start the full crawl on profile, it ends..and the log says bad username and password....And users when change their email id, it does not sync with AD or vice versa....Please give me some hints...

Thanks again


On 4/15/2011 11:29:06 AM cynthia said ..
Our active directory is not fully populated, so we run a job to populate the user profiles in Sharepoint 2007, I have now realized that the import from active directory has not run for about 8 months, my question is if I run the AD import will it override the changes we have made to the user profiles in the sharepoint?


On 6/7/2011 7:27:54 PM Doreen said ..
Excellent post, it helped my understanding as a new SharePoint admin about profiles.

Question: What is the correct behavior on the people.aspx (Peoples and Groups > All People) page when one clicks on a user name? What I am experiencing is when I click on a user name, for all but 2 users, their My Site will open. The other 2 users, when clicked on, will launch a User Info page(userdisp.aspx). The difference between these 2 users and the others is that thier names were changed (got married) in AD and thus their SharePoint profile name changed. We have Moss 2007 on Server 2008.

Besides this concern I'd like to know if there is a way to move the content of a user's My Site to their new My Site when they create it under their new name?


On 6/22/2011 11:11:06 AM Hirwani Jain said ..
How can we Stop Updation of Certain Property of User Profile while Crawling?


Thanks in advance


On 8/26/2011 5:18:55 AM Ankit Singhal said ..
I am trying to create a new connection to import user profiles from AD to sharepoint 2007.

In the User Filter column, I need to use the following query to filter the users:

(&(objectCategory=person)(objectClass=user)(!userAccountControl=514)(|(memberOf=CN=\#UG-RU-GI_users,OU=GlobalIntranet,OU=Groups,OU=Control,OU=Russia,OU=DataManagement,DC=xxx)(memberOf=CN=\#UG-UK-GI_users,OU=GlobalIntranet,OU=Groups,OU=Control,OU=UK,OU=DataManagement,DC=xxx))(memberOf=CN=\#UG-MX-GI,OU=GlobalIntranet,OU=Groups,OU=Control,OU=Mexico,OU=DataManagement,DC=xxx)))....

...the query is very big (more than 2048 characters) as we are filtering users from many CNs and many OUs.

The User Filter column does not accept more than 2048 characters.

Also SharePoint does not allow to create multiple connections with the same domain.

Please help !


On 11/20/2011 10:51:25 AM Lawls said ..
I love how no-one even notices he stops responding after 8/22/07 and look at the last comment. It's On 8/26/2011!!!! Then people continue to post another 65+ questions! HAHAHA to think these are "Smart" people.

I blame the 70's.


On 5/9/2012 12:04:26 PM Althaf said ..
I would like to know if a comprehensive solution exists for 'In active users Mysite not to be delete users those have left the company' those In active users data move or migrate all list and document library data with active user mysite.