Symantec IGA

Hi Team,

We have done an EnC process to import AD accounts into Provisioning->IDM.

We had to do multiple iteration to get to right container on AD. Now we know exactly which containers to use and what attributes to get.

I want to clean up existing user data in Provisioning directory & IDM userstore and do a fresh EnC.

Can some please give me some pointers on how to do this.

Any scripts to auto delete the users?

We want to make sure while we are deleting the data in IDM or Provisioning side it should NOT delete it in Endpoint(AD).

Please suggest.

Thanks,

Satya

Satyam,

There are multiple ways to do that. Deleting users from IDM user store is fairly simple, just delete the container. For global users and their accounts, you can search all users by wildcard search from Provisioning Manager. Select all of them and do "delete with accounts". If you dont want to delete accounts at endpoint system, make sure endpoint setting is selected to "delete from provisioning directory but not from managed endpoint". Also, make sure you dont delete admin users.

If you want to do it via scripts then you can use dxdelete as well. You can find it in provisioning directory bin directory.

Hello,

If the matter is just with account objects, deleting the endpoint object will be the fast way.

It will also remove the inclusion objects related to the Global Users without deleting the endpoint account on the target system.

regards, Laurent