on 04-22-2014 12:51 PM
Hi all,
I am using SAP IDM 7.2.
Could you please help me by explaining step by step process, How to remove user from a particular AD-Group in AD from IDM?
I have two Scenario.
We are getting the groups and corresponding users of those groups and storing in the temporary table in the IDM database. We even able to check whether the user exists in IDM or not and also we can able to check whether the user has respective group privilege or not.
Our main aim is to remove the user from AD group from IDM without using TO LDAP pass from IDM. If there is way please share to me if not please let us know how can we do this with TO LDAP pass.
Thanks in Advance,
Regards,
C Kumar
I would definitely go with the ToLDAP pass. It's easy to do and does not require any scripting. I believe if you look in the SAP Provisioning framework you'll see an example.
Regards,
Matt
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Powershell (or vbscript if you want to be old school).
You can trigger a powershell script which will remove the offending user(s) easily enough with out resorting to a TOLDAP pass. Nearly any script type thing would work but powershell is preferred. It can be triggered separately from the TO AD stuff and will take multiple objects to run in one pass if you can construct the command line (or create a text file and feed it in).
Otherwise, TOLDAP is the way to write to AD...
Peter
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.