Directory and Resource Administrator is unable to access object properties specific to a Microsoft W (NETIQKB35094)

  • Document ID:7735094
  • Creation Date:02-Feb-2007
  • Modified Date:19-Jun-2007
    • Micro Focus Products:
      Directory and Resource Administrator

Resolution

fact
Directory and Resource Administrator 7.x

symptom
Directory and Resource Administrator is unable to access object properties specific to a Microsoft Windows 2003 domain.

symptom

When managing Multiple Microsoft Windows 2000 or later Domains with Microsoft Exchange 2000 Support, specific Microsoft Windows 2003 object properties are not available in Directory and Resource Administrator.



cause
By default, when managing multiple Active Directory domains, the Administration server uses the largest Active Directory schema to populate the accounts cache.

cause
The Active Directory schema has been extended, but the NetIQ Administration Service on some or all DRA servers has not yet been restarted. 

fix

When the NetIQ Administration Service for Directory and Resource Administrator (DRA) starts up, it determines which managed domain has the largest schema and loads that schema. If the DRA services on multiple DRA servers are started at different times (or when one or more domains might be down) they may load different schemas.  If the same schema isn't loaded on all DRA servers, its possible they all won't have the same extended schema attributes.

For example, If DRA is set to manage a Microsoft Windows 2000 Domain with Microsoft Exchange 2000 enabled, and a Microsoft Windows 2003 domain without Microsoft Exchange enabled, the 2000 domain will have the largest schema and will be loaded in by default.  In order to be able to manage the Microsoft Windows 2003 object properties, the following workaround is available in DRA 7.5 if you are managing Microsoft Windows 2000 domain with Microsoft Exchange 2000 and Microsoft Windows 2003 domain using the same DRA server: 

  1. Launch Regedit.
  2. Go to HKEY_LOCAL_MACHINE\SOFTWARE\Mission Critical Software\OnePoint\Administration\Data\Modules\Accounts.
  3. Create a new String Value named LoadSchemaFromThisDNS.
  4. Set the value of LoadSchemaFromThisDNS to the full DNS name of the domain (e.g.  Admin.com).
  5. Stop and the restart the NetIQ Administration Server (MCS OnePoint Administration Service) service.


note

The schema properties are loaded at service startup so if the schema is extended you must restart all DRA services before they will recognize the new schema attributes.



Additional Information

Formerly known as NETIQKB35094