Environment
NetIQ Advanced Authentication 4.8
Situation
We get an error “Access is Denied” error while trying to load NetIQ license.
Resolution
NetIQ license data is stored in Active Directory Schema within the “bioLicenses” attribute of the domain object (i.e. dc=domain,dc=com or domain.com).
Write permissions for this attribute are configured, by default, for Domain Admins security group.
When installing the first NetIQ Authenticore Server, several security groups and a service account are created. The NetIQService account that is created requires Domain Admin privileges in order to write data to the “bioLicenses” attribute.
The NetIQService account may lack the required permissions to write the license data to this attribute.
Verify that the NetIQService account belongs to the Domain Admins security group, restart the NetIQ Server Service, then re-run the license tool from the system tray icon.
Additional Information
Formerly known as 0021.