Connector Guides › Connectors Guide › Connecting to Endpoints › NDS Connector › Connector-Specific Features › Acquire an NDS Tree

Acquire an NDS Tree

You must acquire the NDS Tree before you can administer it with CA Identity Manager. In order to acquire an NDS Tree, perform the following steps from the Endpoint Type task view:

1. Register the NDS tree as a tree in CA Identity Manager, using the NDS Tree property.

   Note: Verify that the administrative account is authorized to manage the NDS Tree. If this account does not have the proper privileges, you cannot manage the NDS Tree in CA Identity Manager.

2. Explore the objects that exist in the tree.

   After registering the Tree in CA Identity Manager, you can explore its contents using the Explore and Correlate Endpoint dialog. The Exploration process identifies the hierarchy of the NDS Tree and finds all NDS accounts and groups in this hierarchy. You can correlate the accounts with global users at this time, or later.

3. Correlate the explored accounts with global users.

   When correlating accounts, you can specify which fields are matched with global user fields. By default, when you correlate accounts, CA Identity Manager creates or links the accounts in an endpoint with global users, as follows:

   1. CA Identity Manager attempts to match the NDS login name with each existing global user name. If a match is found, CA Identity Manager associates the NDS account with the global user. If a match is not found, CA Identity Manager performs the next step.
   2. CA Identity Manager attempts to match the NDS full name with each existing global user's full name. If a match is found, CA Identity Manager associates the NDS account with the global user. If a match is not found, CA Identity Manager performs the next step.
   3. If the Create Global Users as Needed button is checked, CA Identity Manager creates a new global user and then associates the NDS account with the global user. If the Create Global Users as Needed button is unchecked, CA Identity Manager performs the next step.
   4. CA Identity Manager associates the NDS account with the default user object.
4. Re-exploring NDS Trees.

   If you want that changes made directly to the tree hierarchy, such as adding or removing an organization using native tools, be taken into account during a re-exploration, you must perform one of the following steps, prior to re-exploring:

   • Restart the C++ Connector Server service from the Service Manager.
   • Open a command prompt and enter the following commands:

     net stop im_ccs
     

     net start im_ccs