ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to view the contents of an LDAP UserStore or Provisioning directory

book

Article ID: 132835

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal

Issue/Introduction

CA Identity Manager coordinates two user stores:

The CA Identity Manager user store, the user store maintained by CA Identity Manager. Typically, this is an existing store that contains the user identities that a company needs to manage.

The user store can be an LDAP directory or a relational database.

In the Management Console, you create a CA Identity Manager Directory object to connect to the user store and to describe the user store objects that CA Identity Manager will maintain.


The Provisioning Directory, the user store maintained by the Provisioning Server.

It is an instance of CA Directory and includes global users, which associate users in the Provisioning Directory with accounts on endpoints such as Microsoft Exchange, Active Directory, and SAP.

Only some CA Identity Manager users have a corresponding global user. When a CA Identity Manager user receives a provisioning role, the Provisioning Server creates a global user.

The configured stores can be seen in the IM Management Console (example below)


Environment

Release : 12.x\14.x

Component : IdentityMinder(Identity Manager)

Resolution

If you wish to inspect the LDAP User Store you can use a utility like JXplorer (available to download from http://www.jxplorer.org/).

Once you have downloaded the utility you can configure the connection to access the User Store.

For example:

 

 

Host: MyHost  

Port: 19289

Protocol: LDAP v3

Base DN: dc=im,dc=eta

Level: User+ Password

User DN: cn=dsaadmin,ou=im,ou=ca,o=com

Password: <Password>



You can configure the connection to access the Provisioning Directory as follows:

For example:

Host: MyHost

Port: 20394

Protocol: LDAP v3

Base DN: 

Level: User+ Password

User DN: eTDSAContainerName=DSAs,eTNamespaceName=CommonObjects,dc=etadb

Password: <Password>

 

Additional Information

For more information on user stores please refer to the CA Identity Manager Product Documentation


https://docops.ca.com/ca-identity-manager/14-3/EN/installing/ca-identity-manager-components/user-store-and-provisioning-directory


Attachments