Netiq Identity Manageris a LDAP based directory software. In this example, I had a service account that need to perform LDAP lookups but wasn’t returning all the properties for a user. I did the following steps to give the account more rights so that it would return all properties instead of a subset of properties:
Sign into web GUI of iManager => Roles and Tasks => Rights => Rights to Other Objects
Trustee Name: $PathToServiceAccount
Context to search from:
Click okay => Next screen should be blank.
Now click ‘Add Object’ => (select your tree root) => click ‘assigned rights’
- Click the Property Name and make sure the following are checked:
[All Attributes Rights] - Compare, Read
[Entry Rights] - Browse
- Test by signing into Apache Directory Studio before and after and doing a quick search on your LDAP tree. You should see more properties afterwards!