To store the Privileged Account Manager Objects in the LDAP directory, extend the schema of that directory to support Enterprise Credential Vault objects.
To extend the schema of the LDAP directory, perform the following steps:
Copy the LDIF file from the Framework Manager to the local machine.
In Windows Framework Manager, the LDIF files are available in the location C:\Program Files\NetIQ\npum\service\local\prvcrdvlt\ldap.
In LINUX or UNIX Framework Manager, the LDIF files are available in the location /opt/netiq/npum/service/local/prvcrdvlt/ldap.
Based on the type of the LDAP server, open the appropriate LDIF file and follow the instructions and commands mentioned in the file to extend the schema.
In the LDAP folder, several LDIF files based on the LDAP type are available, such as ad-schema-cv.ldif, edir-schema-cv.ldif, and openldap-schema-cv.ldif. Use the appropriate file and extend the schema in the respective LDAP directory.
For example:
To extend the schema of an Active Directory in the Windows environment, perform the following steps:
Copy the ad-schema-cv.ldif file from the location C:\Program Files\NetIQ\npum\service\local\prvcrdvlt\ldap. and save it in the local machine.
Open the command prompt with the administrator privilege and execute the following command:
ldifde -i -u -f c:\ad-schema-cv.ldif -s localhost:389 -j . -c "cn=Configuration,DC=X" #configurationNamingContext
This command and instructions are provided as part of the ad-schema-cv.ldif file.
Similarly, you can get the commands for extending the LDAP schema from the respective LDIF file.