NetIQ Cool Solutions

ab

Contact ab
Member since 6/26/2009

Bio

No author bio information

User Points

5160 points earned on this site


Author Archives

Using the Generic File Driver in Identity Manager (IDM) with XML Input files

ab

April 7, 2014 11:36 am

Reads: 87

Comments:0

I recently attended an online IDM User Group meeting about the products created by another member of the IDM community; his name is Stefaan Van Cauwenberge and one of his creations is known as the Generic File Driver. This new shim provides the same kind of functionality as the Delimited Text shim from NetIQ, but …

+read more

eDirectory Quirks: /etc/init.d/ndsd and the instances.0 file

ab

March 26, 2014 2:44 pm

Reads: 100

Comments:0

Earlier this week I stumbled upon this because of some sloppy editing of an instances.0 file, which is the file on Linux/Unix which tells eDirectory of all of the possible instances owned by the ‘root’, aka UID 0, user. The file is held under /etc/opt/novell/eDirectory/conf/.edir/ (or under $NDSBASE/etc/opt/novell/eDirectory/conf/.edir/ for those running a non-root install under …

+read more

Book Review: IDM Tokens: A definitive guide to NetIQ’s IDM tokens

ab

September 11, 2013 11:34 am

Reads: 792

Comments:0

Disclaimer to the reader: I have known Geoffrey for many years, have recently started working with him more-closely, and consider him a friend. As a result, it is possible that this is a biased review; still, I am trying to be objective in the information shared. Take it or leave it as you see fit.

“IDM Tokens: A definitive guide to NetIQ’s IDM tokens” (hereafter, “IDM Tokens”) is a book that fills in gaps left by every manufacturer of software that ever existed…

+read more

Rights, Inherited Rights, and Standards Support – A story of troubleshooting Cisco application support with eDirectory

ab

August 27, 2013 11:11 am

Reads: 303

Comments:0

Today I had the pleasure of working through an application problem with somebody via e-mail. LDAP is a standards-based method for querying directories like eDirectory, OpenLDAP, etc. and generally does a great job of making that possible. Applications that need to get user information from a directory should do so via LDAP, and systems that …

+read more

certfetcher – The easy way to grab public key certificates from available HTTPS, LDAPS, and other services

ab

August 13, 2013 11:27 am

Reads: 588

Comments:0

If you’ve been in IT for most than ten minutes, and if you are working with any sort of encryption, and if you are security-conscious at all, it is likely that you have dealt with certificates and needed to get a service’s certificate chain sooner than later.  This is usually accomplished by going into some …

+read more

eDirectory supportconfig plugin

ab

July 22, 2013 3:40 pm

Reads: 398

Comments:0

While the supportconfig utility currently implements functionality to gather some basic eDirectory data, it is capable of doing a lot more. To that end, I have built a plugin that is dedicated to zooming in on what eDirectory really has available to offer from the command line.

+read more

Universal Password Performance Impact by Excluded Passwords

ab

July 10, 2013 5:34 pm

Reads: 466

Comments:0

Over the years the question has come up a few times on the performance impact of excluded passwords defined by a password policy.  If an administrator adds, for example, a few dozen excluded passwords (company name, abbreviations, commonly-used passwords, etc.) then how much will each password change be slowed-down resulting in a poor user experience or need for more hardware?

+read more

NDSRC

ab

March 22, 2012 10:15 am

Reads: 417

Comments:3

Updated: Perl-coded script designed to backup eDirectory on Linux or Solaris.

+read more

eDirectory object timestamp tool

ab

September 8, 2010 11:51 am

Reads: 351

Comments:0

Updated: For several years the ability to timestamp objects within iMonitor has been available, but doing so to dozens/hundreds/thousands of objects has never been much fun. As iMonitor is just a web interface scripting interactions with it is fairly easy to do.

+read more

ndsd-multi : a way to start multiple eDirectory instances simultaneously in Linux

ab

June 9, 2010 3:10 pm

Reads: 513

Comments:2

Updated: Since the release of eDirectory 8.8.0 support for multiple instances of eDirectory on a single box has been available. Using the ndsconfig and especially the newer ndsmanage tool configuring multiple instances of eDirectory is also very easy to do. One feature that has been missing since that time has been the ability to start/stop multiple instances as easily as one can start/stop the first root-based eDirectory instance of a root-installed eDirectory during startup/shutdown. The time has come to overcome that.

+read more