Working with One Identity Active Roles, and I've encountered an OU that is marked as unmanaged, likely due to the edsvaExcludedFromManagedScope
attribute being set to TRUE
.
Re-enable management for a specific OU by setting edsvaExcludedFromManagedScope = FALSE
.
Mannually through the GUI I cant make the change because its grayed out......
-
What's the recommended method in ARS to locate and update this attribute? GUI or PowerShell?
-
If using PowerShell, can someone share the proper Quest cmdlet syntax to update this attribute on an OU?
I tried to update this using which did not work:
Set-QADObject -Identity "CN=MyUser,OU=Users,DC=domain,DC=com" -ObjectAttributes @{edsvaExcludedFromManagedScope=$false}
Check
Get-QADObject -Identity "CN=MyUser,OU=Users,DC=domain,DC=com" -IncludedProperties edsvaExcludedFromManagedScope |
Select-Object Name, edsvaExcludedFromManagedScope