Environment
Directory and Resource Administrator 7.5
Directory and Resource Administrator 8.x
Directory and Resource Administrator 8.x
Situation
Error: 'DRA cannot locate the registry entry to allow the home share delete trigger to delete the selected home share. Or, the selected home share violates the list of protected shares. For more information, see NetIQ Knowledge Base article NETIQKB43842'.
Error: 'DRA cannot locate the registry entry to allow the home share rename trigger to rename the selected home share. Or, the selected home share violates the list of protected shares. For more information, see NetIQ Knowledge Base article NETIQKB43842'.
Error message received when attempting to permanently delete a user account from the recycle bin with the 'Delete home directory when user account is deleted' option selected in Home Directory Policies.
Error message received when attempting to modify (change the location of) a user account's home directory path with the 'Delete home directory when user account is deleted' and/or "Rename home directory when user account is renamed" options selected in Home Directory Policies.
Error message received when attempting to rename a user account with the 'Delete home directory when user account is deleted' and/or "Rename home directory when user account is renamed" options selected in Home Directory Policies.
How do I properly configure the syntax for Allowable Parent Paths?
How do I configure Allowable Parent Paths for NetApp Filers or DFS partitions or paths?
Error: 'DRA cannot locate the registry entry to allow the home share rename trigger to rename the selected home share. Or, the selected home share violates the list of protected shares. For more information, see NetIQ Knowledge Base article NETIQKB43842'.
Error message received when attempting to permanently delete a user account from the recycle bin with the 'Delete home directory when user account is deleted' option selected in Home Directory Policies.
Error message received when attempting to modify (change the location of) a user account's home directory path with the 'Delete home directory when user account is deleted' and/or "Rename home directory when user account is renamed" options selected in Home Directory Policies.
Error message received when attempting to rename a user account with the 'Delete home directory when user account is deleted' and/or "Rename home directory when user account is renamed" options selected in Home Directory Policies.
How do I properly configure the syntax for Allowable Parent Paths?
How do I configure Allowable Parent Paths for NetApp Filers or DFS partitions or paths?
Resolution
In Directory and Resource Administrator (DRA) 7.5 and later, configuring Home Directory Policies now includes the ability to specify the allowable parent paths to user home directory shares. This additional configuration controls the possible accidental deletion of home directories. The allowable parent paths must be in a specific syntax (displayed below) for this functionality to work correctly. If the allowable parent paths are not configured, DRA will display various error messages referencing this knowledge base article.
To configure the allowable parent paths:
- Open the Delegation and Configuration Console as a DRA Admin.
- Select the Policy and Automation Management Node.
- From the Tasks menu, select Configure Home Directory Policies...
- In the Allowable parent path text box, enter the allowable paths in the following formats:
- For Windows File Servers: \\server\drive\path_to_root
Example: The user home share root is located on the E: drive of FILESERVER01 in a directory called Home.
The correct syntax for the allowable parent path in the above example is: \\FILESERVER01\E:\Home. - For NetApp Filers/DFS paths (DRA 8.1 SP1 and later): \\FilerName\adminshare:\volumerootpath\directorypath
Example: The local path of the share on a NetApp filer, called FILER01, is c$\vol\vol0\mydirectory
The correct syntax for the allowable parent path in the above example is: \\FILER01\c:\vol\vol0\mydirectory
- For Windows File Servers: \\server\drive\path_to_root
- Click Add.
Cause
This is by design. The Delete and Rename Home directory policy settings require the Allowable parent paths to be configured. The Rename policy is actually a mkdir/copy/rd string of operations, and thus, the configuration check for a 'delete' operation still applies to renamed accounts or changed directory paths.
Additional Information
Formerly known as NETIQKB43842
For more information on configuring NetApp Filers and DFS paths and partitions, see NetIQ Knowledge Base article NETIQKB70959.
For more information on configuring NetApp Filers and DFS paths and partitions, see NetIQ Knowledge Base article NETIQKB70959.