Idea ID 2772754
I got a way to integrate users belonging to an Microsoft Active Directory group (Arc_Admins, Arc_Users, Arc_Readers) to the PSQL ArcMC database and integrate such users to certain User Lists (Arc_Admins, ...) whith desired rights and roles. Basically get users with ldapsearch and insert or delete them into public.arcmc_um_user and arcmcum_list_user tables.
For being efective such changes on our ArcSight Nodes (ArcMC and Loggers). It is still needed to go to User Management/ Associations, select the desired association and push it to the configured Nodes.
I would like an .../arcmc/bin/ script that could do all this, with a parameter as "Arc_Admins" (the ldapsearch command has as filter (&(objectClass=user))(memberOf=CN=Arc_Admins,...)(...) ), it may ask the UserList and destination to be attached and the Associations to be pushed.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.