Chat now with support
Chat mit Support

Identity Manager Data Governance Edition 9.2.1 - Technical Insight Guide

One Identity Manager Data Governance Edition Technical Insight Guide Data Governance Edition network communications Data Governance service Data Governance agents Resource activity collection in Data Governance Edition Cloud managed hosts permission level to role mapping QAM module tables Configurable configuration file settings
Data Governance service configuration file settings Data Governance agent configuration file settings
Configurable registry settings PowerShell commands
Adding the PowerShell snap-ins Finding component IDs Data Governance Edition deployment Service account management Managed domain deployment Agent deployment Managed host deployment Account access management Resource access management Governed data management Classification management

Remove-QManagedHost

Removes a managed host from the list of registered managed hosts.

Note: When unregistered, any agent instances associated with the managed host are also removed. If a computer no longer hosts any agent instances, the Data Governance agent software is also removed.

Syntax:

Remove-QManagedHost [-ManagedHostIds] <String[]> [[-DeleteDuGFirst] [<SwitchParameter>]] [[-SkipAgentUninstall] [<SwitchParameter>]] [<CommonParameters>]

Table 175: Parameters
Parameter Description
ManagedHostIds

Specify one or managed hosts to be deleted. If you specify multiple managed host ids, separate then with commas.

Run the Get-QManagedHosts cmdlet without any parameters to retrieve a list of available managed hosts and their IDs.

DeleteDuGFirst (Optional) Specify this parameter if you want to remove the entry in the QAMDuG table prior to removing the specified managed hosts.
SkipAgentUninstall (Optional) Specify this parameter if you want to force the removal of the managed host from the One Identity Manager database, without uninstalling the managed host's agent.

If this parameter is not specified, the agent will be removed as part of the host removal process.

Examples:
Table 176: Examples
Example Description
Remove-QManagedHost -ManagedHostIds A293B96E-9620-4879-8FC7-FB3393E72768 Removes a single managed host from the Data Governance Edition deployment.
Remove-QManagedHost -ManagedHostIds 29F1D9AD-C87A-4F82-830C-0A7CD1088D84,E4A0B8B8-F021-4509-9648-B4C313E542C0 Removes two managed hosts from the Data Governance Edition deployment.

Set-QManagedHostProperties

Changes the properties of a managed host.

Syntax:

Set-QManagedHostProperties [-ManagedHostId] <String> [[-Keyword] [<String>]] [[-ResourceActivityEnabled] [<Boolean>]] [[-Granularity] [<Int32>]] [[-ScheduleType] [QAM.Common.Interfaces.ScheduleConfiguration+ScanScheduleTupe>]] [[-ScheduledDays] [<Int32>]] [[-ScheduledTime] [<TimeSpan>]] [[-ScanInterval] [<TimeSpan>]] [[-EnableRemoteFileSystemChangeWatching] [<Boolean>]] [[-PerformImmediateScanOnWatchError] [<Boolean>]] [[-OverrideScanScheduleOnStartup] [<Boolean>]] [[-SupressHostProcess] [<SwitchParameter>]] [-IsManagedResourceHost [<Boolean>]] [<CommonParameters>]

Table 177: Parameters
Parameter Description
ManagedHostId Specify the ID (GUID format) of the managed host whose properties are to be updated.
Keyword (Optional) Specify a keyword which can then be displayed and used to group your managed host on the Managed hosts view in the Manager.
ResourceActivityEnabled

(Optional) Set this flag to enable resource activity collection. For example:

-ResourceActivityEnabled 1

Granularity

(Optional) Specify how often (in minutes) you would like to synchronize and aggregate the data. That is, this is the amount of time the agent is to record new activity before sending results to the Data Governance server. The value entered will be changed to a valid aggregation interval, as follows:

  • Values less than 10 minutes will be set to 5 minutes.
  • Values between 10 minutes and 2 hours will be set to 1 hour.
  • Values between 2 hours and 15 hours will be set to 8 hours.
  • Values greater than 15 hours will be set to 1 day.

NOTE: Identical activity generated during this time will be recorded as one activity.

ScheduleType

Specifies the time and frequency with which the agent scans the target computer. Valid values are:

  • DayOfWeek: Use to specify a daily scan schedule. If you specify this value, you must also specify the ScheduledDays and ScheduledTime parameters.
  • Interval: Use to scan the target computer on an hourly interval instead of a daily schedule. If you specify this value, you must also specify the ScanInterval parameter.

This parameter is required for remotely scanned managed hosts.

ScheduledDays

If the ScheduleType is set to "DayOfWeek", specify the days you would like the agent to scan the managed host.

The syntax is DayOne for Sunday, DayTwo for Monday, etc. For example, to set a scan schedule for Monday, Wednesday and Friday, you would specify ScheduledDays DayTwo,DayFour,DaySix.

ScheduledTime

If the ScheduleType is set to "DayOfWeek", specify the time of day when the scan is scheduled to start.

The syntax is, hh:mm:ss. For example, to start a scan at 4 a.m., specify -ScheduledTime 4:00:00; for 6 p.m., specify -ScheduledTime 18:00:00.

ScanInterval

If the ScheduleType is set to "Interval", specify the interval (in hours) at which the agent will scan the managed host.

For example, to scan every 4 hours, specify -ScanInterval 4.

EnableRemoteFileSystemChangeWatching

(Optional) Set this flag to enable change watching for remotely scanned managed hosts. For example:

-EnableRemoteFileSystemChangeWatching 1

PerformImmediateScanOnWatchError

(Optional) Set this flag to perform a full scan when the watcher encounters an error. For example:

-PerformImmediateScanOnWatchError 1

OverrideScanScheduleOnStartup

(Optional) Set this flag for a remote managed host when you want the agent to do a full scan when the agent is started or restarted. For example:

-OverrideScanScheduleOnStartup 1

SupressHostProcess (Optional) Specify this parameter to stop the cmdlet from processing the managed host. That is, you can change a managed host's properties without actually triggering the server to use them right away.
SelectedDataRoots

Specify the managed paths where the agent should start scanning.

A managed path is the root of an NTFS directory tree to be scanned by an agent, or a point in your SharePoint farm hierarchy below which everything is scanned. The agent monitors the specified managed paths for changes to security settings to maintain the security index. In addition, if resource activity collection is enabled, the agent collects resource activity for these same managed paths.

For local managed hosts, all NTFS drives are scanned and monitored by default; However, you can optionally specify the managed paths to be scanned by the agent. When paths are added to this list, only the specified paths are scanned and monitored.

For remote managed hosts, you must specify the paths to be managed in order for scanning to occur. So if you do not specify any managed paths using the parameter, no scanning will occur for the target managed host.

For SharePoint managed hosts, you must specify the paths to be managed in order for scanning to occur. When you select a point in your SharePoint hierarchy as a managed path, new items added below that point are automatically scanned.

IsManagedResourceHost

(Optional) Specify this parameter to change the flag that indicates whether the managed host can be used to host a managed resource (for example, file shares created through the IT Shop self-service request functionality).

Valid values are:

  • $false: Can not be used to host a managed resource (default)
  • $true: Can be used to host a managed resource
Examples:
Table 178: Examples
Example Description
Set-QManagedHostProperties -ManagedHostId 97dbedb3-6b02-4dbf-afe2-70d6bf51185a -ResourceActivityEnabled 1 Enables resource activity tracking on the specified managed host.
Set-QManagedHostProperties -ManagedHostId d589359a-8c51-4de0-8dcf-6b463793b0bf -SelectedDataRoots "\\2K8R2DJSQL\C$\Test Data"

Defines a single data root.

Set-QManagedHostProperties -ManagedHostId 97dbedb3-6b02-4dbf-afe2-70d6bf51185a -IsManagedResourceHost $true

Enables managed resources for the managed host.

Set-QManagedHostUpdated

Informs the Data Governance server that the managed host state should be updated.

Syntax:

Set-QManagedHostUpdated [-ManagedHostId] <String> [<CommonParameters>]

Table 179: Parameters
Parameter Description
ManagedHostId

Specify the ID (GUID format) of the managed host whose state should be updated.

Examples:
Table 180: Examples
Example Description
Set-QManagedHostUpdated -ManagedHostId 6834E1A6-B6C5-4508-867A-1E85B7B81578 Updates the managed host specified by the given managed host id.

Trigger-QDfsSync

By default the Data Governance server synchronizes the DFS structure into the One Identity Manager database every 24 hours. Use this cmdlet to force a DFS synchronization of a DFS managed host, making the DFS path immediately available within the Resource browser.

Syntax:

Trigger-QDfsSync [-ManagedHostId] <String> [<CommonParameters>]

Table 181: Parameters
Parameter Description
ManagedHostId

Specify the ID (GUID format) of the DFS managed host to be synchronized.

Run the Get-QManagedHosts cmdlet without any parameters to retrieve a list of available managed hosts and their IDs.

TIP: To synchronize all DFS managed hosts in your Data Governance Edition deployment, set the -ManagedHostId to All.

Examples:
Table 182: Examples
Example Description
Trigger-QDfsSync -ManagedHostId f9568450-7396-47ed-bfed-e1377946c2af Forces a synchronization of the specified DFS managed host.
Trigger-QDfsSync -ManagedHostId All Forces a synchronization of all DFS managed hosts.
Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen