Symantec IGA

 View Only
  • 1.  List roles per user and list users per role

    Posted Aug 16, 2019 04:07 AM
    Hi Team :-)

    As a former CA it's nice to see so many known names in this community.  Still helping each other :-)

    I have an issue where the customer want to get a list of roles per user and users per role.   They do not use the report server.  So do you have either a ETAUTIL cmd or another good solution.   Have tried Kettle, but in the Provisioning directory the user are mentioned as UUID, so not easy to manage. 

    Thanks and have a nice week-end :-) - Jens


  • 2.  RE: List roles per user and list users per role
    Best Answer

    Broadcom Employee
    Posted Aug 16, 2019 10:13 AM
    See if the below ldapsearch queries will get you what you are looking for.

    ldapsearch -LLL -h IMPS_HOST -p 20391 -D "eTDSAContainerName=DSAs,eTNamespaceName=CommonObjects,dc=etadb" -w PWD -b "eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=im,dc=etadb" -s one "(&(objectclass=*)(eTGlobalUserName=*))" eTRoleDN > RolesPerUser.ldif

    ldapsearch -LLL -h IMPS_HOST -p 20391 -D "eTDSAContainerName=DSAs,eTNamespaceName=CommonObjects,dc=etadb" -w PWD -b "eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=im,dc=etadb" -s one "(&(objectclass=*)(eTRoleDN=eTRoleName=test_prov_role,eTRoleContainerName=Roles,eTNamespaceName=CommonObjects,dc=im))" eTGlobalUserName > UsersPerRole.ldif