LDAP command to list all Global Users associated with a Provisioning Role
search cancel

LDAP command to list all Global Users associated with a Provisioning Role

book

Article ID: 278482

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

What's the LDAP command to retrieve all Global Users associated with a Provisioning Role?

The same "List Global Users" option from the Provisioning Manager

Environment

Identity Manager 14.4

Resolution

Below is the ldapsearch command:

ldapsearch -LLL -h <IP_of_Prov_Server> -p 20389 -b "eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=im,dc=eta" -D "eTGlobalUserName=<GU_to_connect>,eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=im,dc=eta" -w <Password> -s sub "(&(objectClass=eTGlobalUser)(&(objectClass=eTGlobalUser)(eTRoleDN=eTRoleName=<Role_name_to_Search>,eTRoleContainerName=Roles,eTNamespaceName=CommonObjects,dc=im)(eTGlobalUserName=*)))" eTGlobalUserName

 

Where:
<IP_of_Prov_Server> = IP or hostname of the Provisioning Server
<GU_to_connect> = Global User to connect to Prov Server (etaadmin)
<Password> = Password of the Global User
<Role_name_to_Search> = Provisioning role name to search

 

To run from Virtual Appliance machine, run it from the folder

    /opt/CA/IdentityManager/ProvisioningServer/bin

Powered by Wolken Software