NetIQ Communities

Start exploring, experiencing, and engaging with NetIQ customers and commentators in NetIQ Communities! From industry news in NetIQ Views, to technical how-tos in Cool Solutions, to connecting with NetIQ experts in our Support Forums, you can join the conversation today.

Our community includes 3 main areas

Join the conversation on social media
Subscribe to our newsletter

What's Happening...

Monitor almost anything with the generic AppManager Unix ExecUtil Knowledge Script

This article explains how the Unix ExecUtil knowledge script AppManager can be can be leveraged to monitor almost anything on a Unix system with little knowledge on regular expressions / Perl / AWK…

Chrome Extension for NAM Desktop Users

NAM 4.2 provides an end-user portal. Users can access this portal and get SSO to applications listed in the portal or access the application URLs. If users access protected resources directly, as before NAM 4.2, they have to book mark all protected resources. If there are any changes to those protected resources or federation…

What I think of Obama’s Cybersecurity National Action Plan

On February 9, President Obama published “Protecting U.S. Innovation from Cyberthreats” in The Wall Street Journal. The article outlined the cyber-focused portion of the federal budget proposal, which includes a new national plan giving $3 billion to kick-start an overhaul of the federal computer systems. According to the article, Obama’s new Cybersecurity National Action Plan…

Example of calling GroupWise REST API from Identity Manager policy – Part 2

This article is an extension of Part 1 where the gwutils java class has been added with more generic Http methods. However the focus still has been to stick with the GroupWise requirements as explained in the previous part. So testing has been done only with the GroupWise REST apis. This article is…

Managing GroupWise distribution list via GroupWise REST IDM driver without synching groups between IDV and Groups

In any traditional implementation, the user and group objects are synchronized between IDVault and the connected application. However since the number of groups were high in number, it was a requirement from one of our customers to be able to manage GroupWise distribution list membership without enabling the group object sync in the IDM connector…

Enhancing the UA Bash extension for createRole

Fernando Freitas wrote an awesome script that makes the User Application web service endpoint for Roles available as shell commands in bash. This is much more useful than you would think at first. After all, we can do them in a GUI, in SOAP UI, or other SOAP tools, what does bash give us? Well…

Monitor NetIQ Access Manager using SNMP with Cacti

From NetIQ Access Manager (NAM) 4.0, NAM is supporting SNMP to monitor many of the NAM parameters. This cool solution will explain how to use this feature to monitor NAM using an open source monitoring tool Cacti. This cool solution covers, Cacti – Introduction SNMP Monitoring – How it works in NAM. Configuring NAM…

Example of calling GroupWise REST API from Identity Manager policy – Part 1

Recently a customer had the following use case requirements to be satisfied via the Identity Manager GroupWise REST connector. Obtain a list of GroupWise groups(Distribution lists) that the user is currently a member of. The ability to remove all group membership in cases when the user gets disabled in IDVault. When users…

Aegis ‘Depot’ Activity – Convert Unix Timestamps to W32Time / FileTimeformat and back

If you’ve been following my series on identifying Active Directory accounts whose passwords are going to expire in the next X days, you’ll have seen that in order to create an LDAP filter for the date range, that the timestamp has to be in FileTime format which isn’t the most readily available format. So far…

Adding New Functions to the UA Bash extension – Part 3

When last we left off, you should have gotten the RBPM script, gotten the WSDL you are interested in, opened it in SOAP UI and copied out the text of the function you care about. Then we worked through the parts of the function in the WSDL that we probably need to specify information about. To keep it clear in our minds, our example is createResource…

Several Sentinel Plug-ins Released

Check Point Security Gateways Collector 2011.1r4, Juniper Switch and Router Collector 2011.1r2, McAfee Firewall Enterprise Collector 2011.1r2, Palo Alto Networks Firewall Collector 2011.1r2, and Symantec Endpoint Protection Collector 2011.1r3 have been released. Find out more here…

Juniper remote exploit vulnerabilities patched

Last month Juniper quietly released patches for two newly-discovered remote vulnerabilities. The announcement included some curious information including notification of the presence of “unauthorized code” in its ScreenOS. As researchers investigated this, they discovered some very sophisticated changes to the ScreenOS code that would likely require deep inside knowledge and a state-level actor…

Help Shape the Future of Sentinel

We’re already working on the next version of Sentinel, and have some awesome ideas for enhancements. But before we go too far, we need to check with the most important people — our customers. That’s you. We’d love to get your input on some of the features we are considering, so we’ll know which ones…

AD Passwords about to Expire via Aegis – Method #2 using the command line

In this article I will show the second method of creating an Aegis workflow to notify users that their password will expire in X days. Method #1 was a very simple workflow. It was based on you already having a script, powershell, vbscript etc. that performs all the tasks you need, and Aegis simply manages…

Adding New Functions to the UA Bash extension – Part 2

Fernando Freitas of NTS fame wrote a great shell script extension to support the RBPM SOAP functions. The problem is he only implemented the Role service WSDL functions and there are many more in User App that might be needed. Specifically I need the createResource function from the Resource service WSDL. So how to extend it? Read this series, and continue on as I work through that process.