Active Directory

Author Thomas Hood once wrote, “…the easiest reading is damned hard writing.” I imagine most system administrators would express a similar sentiment when approached about automating parts of their organization’s identity and access management (IAM) system. Although automation makes IAM processes less complex for users, it introduces additional complexity for IT, particularly in four specific…

+ read more

Travis Greene
Jul 1, 2015
7:13 am
Reads:
51
Score:
Unrated

Welcome to the IQLdap Adapter Update 2 (version 0.6.0.0). This update is the first to start looking at specific tasks which are possible (mainly and a bit of grunt work) with previous versions such as Group Membership Management, Resetting Passwords and Enabling/Disabling accounts. It also allows for ‘Activity Bundles’ to be added without changes to the…

+ read more

Martin Cotter
Jul 25, 2014
12:11 pm
Reads:
1,173
Score:
Unrated

When working with the default policies for the Active Directory driver, one quickly notices that this driver calls out to several Java functions. This is true with both the package based version or the pre-configured XML driver export used up until the release of NetIQ Identity Manager 4 Overall, the Active Directory driver is one…

+ read more

Alexander McHugh
Jun 9, 2014
12:47 pm
Reads:
1,436
Score:
4.67

Welcome to the IQLdap Adapter Update 1 (version 0.4.0.0) This update adds some cool new features and some updates to work with the new Web Console in Aegis 3.2! New Features! Added Oracle Internet Directory as an LDAP Type This update now allows the LDAP adapter work with Oracle Internet Directory (OID) as well as…

+ read more

Martin Cotter
May 8, 2014
11:05 am
Reads:
1,419
Score:
Unrated

This article looks at automating a mundane IT task with the help of the LDAP Adapter for Aegis – Updating User Profile Pictures! User profile pictures are stored in an LDAP attribute in a binary format, so this is also a good example of how complex data handling can be done in a really simple…

+ read more

Martin Cotter
Feb 12, 2014
11:01 am
Reads:
2,155
Score:
5

Communicating with LDAP is a common function in Aegis automation workflows across a wide variety of use cases. Most use-cases are simply to find or modify information as part of a larger workflow in an integrated fashion. For example if a VMWare Provisioning request is received from a user, we can determine that persons group…

+ read more

Martin Cotter
Feb 6, 2014
11:39 am
Reads:
1,851
Score:
5

Purposes: POC (internal use only) Version: Sentinel 7 (it would work on Sentinel 6 as well) Type: Solution Pack Some notes: – This solution pack was built based on some (not all) Change Guardian rules and there are around 47 correlation rules– It could be used when Change Guardian is missing and you need some…

+ read more

By: hhigashi
Aug 18, 2012
11:12 am
Reads:
1,303
Score:
Unrated

This is a little PowerShell script that finds and exports a list of users not logged in, in a number of days, from your Active Directory.

nop1983
By: nop1983
Feb 1, 2012
1:50 pm
Reads:
2,574
Score:
Unrated

Girish Mutt explains how to integrate the RDP relay feature of PUM on Windows with Active Directory as the authentication domain.

By: mugirish
Sep 2, 2011
12:31 pm
Reads:
2,304
Score:
Unrated

Our client is concerned about a well known behavior in AD with regards to synchronization of the last logon time of a user. In Active Directory, the attribute lastLogon contains the last time a user logged in. This attribute, however, is not replicated between domain controllers. Therefore, since IDM runs off one of those domain controllers, only user who logged in at that specific DC would be synchronized. This solution demonstrates how to use the scripting driver to retrieve more updated data for lastLogon.

By: rrawson
Nov 30, 2010
6:12 pm
Reads:
2,614
Score:
Unrated