Symantec IGA

 View Only
  • 1.  etautil to list all AD Account

    Posted Jul 28, 2019 11:14 PM
    Hi Team,
    CA Identity Suite 14.3 vapp.
    When i build a etautil command to list all the OUs in AD, it works with following etautil command

    But when I tried to build a etautil command to list all AD account that belong to AD endpoint. 

    Can anyone advice, what wrong with this etautil command ? 


    regards,
    William


  • 2.  RE: etautil to list all AD Account
    Best Answer

    Broadcom Employee
    Posted Jul 29, 2019 09:07 AM
    The default scope is one-level. You should instead specify a full subtree search which is scope=2 as mentioned on the following documentation page:

    https://casupport.broadcom.com/cadocs/0/CA%20Identity%20Manager%20r12%205%20SP4-ENU/Bookshelf_Files/HTML/index.htm?toc.htm?237008.html



  • 3.  RE: etautil to list all AD Account

    Posted Jul 31, 2019 02:12 AM
    Hi Kenneth,
    I have checked the CA documentation, it did not mention that etautil ...select with scope=2. 
    (CA Documentation did not mentioned about etautil with "select" statement)

    As i know, ldapsearch can search by scope=2.

    regards,
    William