Technote (FAQ)
Question
How to get Console LDAP operators to be able to login after moving the users to new OUs and groups
Cause
Functionality not yet available.
Answer
Work-around is listed below:
1. Backup the database.
2. Using SQL Server Management Studio by querying for the current LDAP distinguished name. The following query can obtain this information, replace "USERTOCHANGEDN" with the name of the user in the database table. Copy the data that results from the running of the query by right clicking and copying it to a text file.
use BFEnterprise
select LdapDN from dbo.USERINFO where Username = 'USERTOCHANGEDN'
3. Obtain the new distinguished name using LDAP Explorer or Active Directory.
4. Using SQL Management Studio click the New Query button and use the following query replacing the "NEWLDAPDN" with the new distinguished name obtained in step Replace the "OLDLDAPDN" with the results
use BFEnterprise
update userinfo set LdapDN = 'NEWLDAPDN' where LdapDN =
'OLDLDDN"
5. On the TEM Server do the following:
a.Go to a command prompt and navigate to your BES Server directory (C:\Program Files\Bigfix Enterprise\BES Server by default.)
b. Run the following command "besadmin.exe /resignsecuritydata"
Product Alias/Synonym
Tivoli Endpoint Manager
Rate this page:
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.