There is a very easy way to see the last modification timestamp for any object in eDirectory but for looking up the last modification timestamp for any attribute on any object in eDirectory, the process involves a few steps as shows below:

  1. Logon to iMonitor on any Identity Vault server within the environment. When prompted about the security certificate (it’s self signed), choose to continue.
  2. Click on NDS iMonitor
  3. Logon with your admin account in dotted distinguishedName format (admin.vault.test) and password.
  4. Click the Search icon on the right side of the tool ribbon at the top (magnifying glass icon)
  5. For Base Object, use the VAULT partition. For Relative Distinguished Name, enter a CN value from the Identity Vault for the user. Choose Subtree and click Search.
  6. The search takes a little time. Be patient.
  7. Drill into the results by clicking the link.
  8. On the left side of the screen, you’ll see a pane with the attributes available for the object. These are bookmarks into the data pane on the right, which is probably huge and painful to scroll by hand. Use the shortcuts on the left side!
  9. Just scroll to an attribute on the left, click it, and the data pane will jump to that information. Note that the box will show the name of the attribute, the timestamp for the last update, flags, and the current value.
  10. If you click on the link of the attribute name, it will take you to the schema definition for that attribute, in case you want to see that level of information.
  11. Multi-valued attributes will show all values, with individual timestamps.
0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Leave a Reply

Leave a Comment

Oct 26, 2010
12:15 pm
Active Directory Authentication Automation Cloud Computing Cloud Security Configuration Customizing Data Breach DirXML Drivers End User Management Identity Manager Importing-Exporting / ICE/ LDIF Intelligent Workload Management IT Security Knowledge Depot LDAP Monitoring Open Enterprise Server Passwords Reporting Secure Access Supported Troubleshooting Workflow