• State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 61 subscribers
  • Views 4314 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Configuring optional uniqueness counter for (cn)

sgoldberg
over 12 years ago

Greetings all,

Can anyone provide a suggestion or method for generating the (cn) with optional uniqueness counter like the logon name offers in the image below?  The rules for generation and validation don't seem to offer that entry property.  If using onPreCreate is necessary I can try that too.

Thanks in advance.

-Steve

Edit Entry.jpg

  • 0 over 12 years ago

    Steve,

    Please see my blog for a sample script of using onCheckPropertyValues handler with Quest cmdlets to ensure a unique value for a property. Your script would then contain logic to create the unique value, with additional AD lookups likely required in certain instances.

    One thought to your scenario - since cn values are only required to be unique per each parent container, make sure it is worth the overhead of a script policy to capture these exceptions. For some environments where the odds of this occuring are very-low-to-low, it's a logical choice for overall server performance (and low mngmnt overhead) to have the console return the error to your admins. Again, just a thought

    If you own QuickConnect, the provisioning rules within the application workflows handle this need for you. Together with ARS, QuickConnect creates the ultimate solution for your IDM challenges!

  • 0 over 12 years ago

    Greg,

    Much appreciated and I'm learning much from your blog and advice.  With respect to your comment on owning QC and the provisioning rules within workflows handling this, what exactly are you referring to?  Under the Initial Attribute Population Rules, I run into the same thing as with the ARS generate and validate rule; no built-in option to increment counter to the attribute value when not unique is encountered.  Are you suggesting tweaking the onCheckPropertyValues sample script for my needs and plugging that into the Script option of the Initial Attribute Populations Rules for (cn) ?  If so, I would want to add a counter to the value.  ie: cn = jsmith, cn = jsmith1

    Just trying to understand if I'm missing something on using the QC workflow effectively for this.  I've attached screenshot of my understanding of using QC to accomplish.

    Thanks again!

    -Steve

  • 0 over 12 years ago

    For the Provision Workflow within your screenshot open the Target tab. There you can configure the rules for unique object names (cn). My screenshot below shows an example of the rules I use for a client. You can add rules for adding numbers, too.

    For scripting needs involving event handlers (e.g. onCheckPropertyValues, onPreCreate, etc etc), these can only be setup within the ARS console. QuickConnect does not utilize them.

    QC_Provision_Name_Rules01.jpg

  • 0 over 12 years ago

    Thanks for all the help.  That resolved my problem (very simply) and cleared up alot for me about the way Rules to Generate Unique Object Name works. 

    -Steve

  • 0 over 5 years ago in reply to gregvm

    Hi Greg, Do you mind sending me the screenshot of those rules again for QC/ARS Sync Engine? the screenshot has been removed.