Previous Topic: sepromote Utility—Enforce Strong AuthenticationNext Topic: sereport Utility Reports Configuration


sepurgdb Utility—Purge Database References to Undefined Records

Valid on UNIX

The sepurgdb utility searches the entire database for references to undefined records, and then deletes those references from the database, thereby reducing the size of the database.

Important! For safety purposes, first back up the database, and then invoke the utility while the CA ControlMinder daemons are not running.

When a record is deleted, references to it in lists such as ACLs or lists of group membership are usually left as is, to reduce processing time. This does not cause any problems, since CA ControlMinder assigns a previously unused, unique ID to each new record. You only need to use this utility to to free up some disk space.

To run sepurgdb, you must be root and invoke the utility from the directory containing the database files. The database management system uses pre‑allocated disk space. The size of the database file normally does not change significantly after purging. When the size of the database is increased later, the file size may not change significantly due to the pre‑allocation.

This command has the following format:

sepurgdb FilePath [Username]
FilePath

Specifies the base name for the utility's log files. The sepurgdb utility creates two log files:

FilePath.err

Contains a log of errors encountered.

FilePath.log

Contains a log of actions taken.

Note: You can merge the two logs and direct them to the standard output by specifying a minus sign (‑) for FilePath.

Username

(Optional) Specifies the name of the user that sepurgdb uses to replace deleted owners (users that no longer exist) of the group connection for the USER record.

Note: The user you define must exist in the database, otherwise the utility ignores this option.