Hello,
Can NetIQ select in the filter technical accounts by usage that do not have any users attached to them, I mean empty roles.
Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Hello,
Can NetIQ select in the filter technical accounts by usage that do not have any users attached to them, I mean empty roles.
From a data storage perspective a Role assignment is stored in the User in nrfMemberOf and nrfAssignedRoles (and nrfGroupRoles and nrfContainerRoles depending on how you assigned the Role. However, RRSD is supposed to set Equivalent To Me on the Role object, when assigned to a user.
So you could query for (&(objectClass=nrfRole)(!(equivalentToMe=*))) which is needs both objectClass is nrfRole, AND then use the NOT operation on equivalentToMe=* which is to say, absent of values.