Browse By Tags

  • Active Roles Rapid recovery campaign

    Campaign description 

    The theme of this campaign is focused on readiness and efficiency in Active Directory management as we prepare for the end of the crisis.  As organizations furloughed employees, reduced work-forces, or switched users to remote status…

  • CRN UK Channel Awards 2019 – One Identity is proud to be shortlisted in the “Security Vendor of the Year” category

    It’s not long now until the winners of the 2019 CRN UK Channel Awards are announced and we couldn’t be more excited as we gear up for the big day. This year, One Identity stood out amongst the many entries and became a finalist in the Security…

  • Configuring Samba Client on RHEL 7 to access a windows share


    I am relatively new to the Quest One Identity software . 

    I am working on configuring  Samba client on Red Hat Linux REHL 7  to access a windows share . 

    We have Quest One Idenity implemented (VAS 4.0) with PAM authentication from Active  directory. We…

  • Ad group not assigned

    Hello experts,

    (Ver 7.1.2)

    We have an active directory group that is not being assigned as we expected.


    We have a Service item published in the IT shop that has an Active directory group associated. Whenever an employee requests it and the approval workflow…

  • Active Directory Provisionning

    Hello Everyone, 

    Thanks in advance for your answers.

    I have a problem with the AD Provisionning (Target Synchronization).

    I don't know how to create a kind of CheckBox on "Create User Account" Form via Manager Application (also via Web Portal…

  • Error DPR_NeedExecuteWorkflow

    Hi, everyone. Recently we faced a problem. When we try to compile our database we have such errors "Error compiling script Precode of Chain ADS_Group_Delete(39,0): DPR_NeedExecuteWorkflow is not declared. It may be inaccessible due to its protection level…

  • AD update schema error

    Hi Experts,

    We have exported AD sync project from Synchronization editor and imported it to on new environment.

    After importing it, we have updated connection details to Target system for  new Active Directory then we are trying to update schema.


  • When it Comes to IAM, Active Directory Matters

    Active Directory holds such a prominent position in the enterprise, that inadequate management and security of this universally accepted directory can be a major barrier to IAM success. For all its goodness, AD is woefully lacking in native management…

  • When You're Dealing With Directories, They're All Special, but Some Are More "Special" Than Others

    Let’s talk directories for a minute. In identity and access management (IAM) it all starts with the directory – after all, you need someplace to set up the account and hold authorizations and you need something to authenticate against. Everything that…

  • The Top 5 Challenges with Active Directory Management

    We all have Active Directory (AD), and love it or hate it, we cannot survive without it. Nothing brings IT to a grinding halt faster than an inability of users to logon to the critical systems accessed through AD. When people can’t get to Exchange, or…

  • 5 Active Directory Security Best Practices: AKA Check your Shoelaces Before you Start the Race

    Years ago, when I was much younger, skinnier, and tougher, I was a pretty good runner. In fact for a couple of years I was the fastest female marathon runner in the state of Utah (we won’t mention the fact that I’m a guy, and couldn’t get close to the…

  • How to Get Active Directory Out of the Way so You Can Reach Your IAM Objectives

    The whole point of identity and access management (IAM) is to ensure that the right people have the right access to the right stuff at the right time in the right way and that all the other right people say that it’s okay that they have that access.…

  • Everything You Ever Wanted to Know About Active Directory Management and Security but Were Afraid to Ask

    A little while back I was reviewing anecdotal stories from some of our One Identity solutions customers. I found an alarming theme across a number of them. Alright it was alarming for these customers but encouraging for me and the IAM solutions I represent…

  • Custom workflow - email user random generated password

     Hello guys,


    I have just recently installed One Identity Password Manager version in our test-environment. We see that the existing workflows can not apply to our situation, and need to create a new simple custom workflow. We are looking for…

  • Possible to put a cap on the total number of members a group can have?


    Just wondering if/how I could use ActiveRoles to put a limit on the number of members a group can have? Ideally I would like certain AD groups to have a maximum number of members, and then preventing new members from being added until the member count…

  • ARS WI Search - ADAM


    I have acustomer that is using ARS to manage ADAM instances as well as AD.  Their authoritative provisioning source is ADAM ( they are created/deleted here first) as they use another in-house system to provision/deprovision the users intoAD and other…

  • Custom display specifier for ADLDS

    We're looking to store application specific attribuites in AD-LDS for Users that get authenticated in AD.  The user 'class' is different than people\user in the LDS environment to match the application environment currently managed in a competitors…

  • Password sync - AD DC and outages

    What happens if the QC engine is down (for whatever reason) when a DC catches a password?  Where is it stored, what is the pattern, etc.?


    Capture agent have a settings, and by default will tried to forward each 10 min not forwarded passwords during…

  • Choose provisioning target conainer based on script results?


    I would like to let Quick Connect choose the target container for provisioning objects based on the source users source container:

    • If user is in container "CN=sales,DC=companyA,DC=com" then provision this user to "CN=sales,OU=Users,DC=CompanyB,DC=com…
  • Provisioning condition based on group membership in source AD


    I would like to create a provisioning step that provisions user objects based on their membership in the source Active Directory: "If user is member of group "MySyncGroup" in connected source AD then provision this user to managed AD Domain."…

  • "User" attribute missing in generic LDAP connector

    Hi All,

    I am trying to synchronize AD to openLDAP. On the workflow when i try to create from AD to LDAP i cant find User attribute in target LDAP. Can anyone help me with this please???

    Thank you!

  • AD to LDAP generic connector

    Hi All,

    I am trying to get AD users synchronized to openLDAP using one quick connect base. I dont know what i am doing wrong but i am unable to move further as i keep getting "an error occured while creating the object '' There…

  • Syncronizing AD group memberships to/from SQL tables

    Hi all,

    I looking for other's feedback on a solution I am working on to sync the membership of an AD group to a combination of SQL tables.   The SQL tables are structured as follows:

    Users Table


    Group Table

    Group NameGr…
  • Novell to AD, How do I rename users and not break mapping.

    I am using QC 5 to provision and update users and groups between eDirectory and AD 2008 R2. I have the steps working pretty well at first glance, but I just realized that if we rename a user in eDir I am going to lose the mapping of the account to AD…

  • Import from CSV to AD

    Hello everybody,

    I try to establish the import from a csv file to the Active Directory with Quick Connect. My Situation is i get a file from human resources where the data are out of the hr tool. I get it in Excel so I save it as CSV.

    I use this CSV to…