Entitlement checks are not enumerating my Active Directory groups. (NETIQKB50754)

  • 7750754
  • 02-Feb-2007
  • 02-Nov-2007

Resolution

fact
NetIQ Vulnerability Manager 5.0

fact
NetIQ Vulnerability Manager 5.5

fact
NetIQ Vulnerability Manager Agent for Windows 5.0

fact
NetIQ Vulnerability Manager Agent for Windows 5.5

symptom
Entitlement checks are not enumerating my Active Directory groups.

symptom
Why aren't my Active Directory users showing up when I run entitlement checks in VM?

symptom
Why isn't VM returning all of my Active Directory groups?

cause

The agent does not have permission to enumerate the group. The agent does not display an error message, but instead just displays the data it has access to.



fix

To resolve this issue, you need to modify the account starting the agent service to one that has domain administrative permission.

To change the agent service account:

  1. Log on to the computer where the Windows agent is installed.
  2. Navigate to the Services tool on the computer.
  3. In the list of services displayed, right-click the NetIQ VigilEnt Agent service and select Properties.
  4. In the Properties window, click the Log On tab.
  5. Click the This Account radio button if not already selected.
  6. Specify an account that has domain administrative permissions.
  7. Click OK.
  8. Right-click the NetIQ VigilEnt Agent service and select Restart.


Additional Information

Formerly known as NETIQKB50754

Feedback service temporarily unavailable. For content questions or problems, please contact Support.