How to view the contents of an LDAP UserStore or Provisioning directory
Article ID: 132835
Updated On:
Products
Issue/Introduction
CA Identity Manager coordinates two user stores:
The CA Identity Manager user store, the user store maintained by CA Identity Manager. Typically, this is an existing store that contains the user identities that a company needs to manage.
The user store can be an LDAP directory or a relational database.
In the Management Console, you create a CA Identity Manager Directory object to connect to the user store and to describe the user store objects that CA Identity Manager will maintain.
The Provisioning Directory, the user store maintained by the Provisioning Server.
It is an instance of CA Directory and includes global users, which associate users in the Provisioning Directory with accounts on endpoints such as Microsoft Exchange, Active Directory, and SAP.
Only some CA Identity Manager users have a corresponding global user. When a CA Identity Manager user receives a provisioning role, the Provisioning Server creates a global user.
The configured stores can be seen in the IM Management Console (example below)
Environment
Release : 12.x\14.x
Component : IdentityMinder(Identity Manager)
Resolution
If you wish to inspect the LDAP User Store you can use a utility like JXplorer (available to download from http://www.jxplorer.org/).
Once you have downloaded the utility you can configure the connection to access the User Store.
For example:
Host: MyHost
Port: 19289
Protocol: LDAP v3
Base DN: dc=im,dc=eta
Level: User+ Password
User DN: cn=dsaadmin,ou=im,ou=ca,o=com
Password: <Password>
You can configure the connection to access the Provisioning Directory as follows:
For example:
Host: MyHost
Port: 20394
Protocol: LDAP v3
Base DN:
Level: User+ Password
User DN: eTDSAContainerName=DSAs,eTNamespaceName=CommonObjects,dc=etadb
Password: <Password>
Additional Information
For more information on user stores please refer to the CA Identity Manager Product Documentation
Feedback
