Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Digipass</strong> <strong>Plug</strong>-<strong>In</strong> <strong>for</strong> <strong>SBR</strong> <strong>Administrator</strong> <strong>Reference</strong> Active Directory Schema<br />
dpadadmin upgradeprofiles [-attrgroup ] [-domain ] [-q]<br />
[-l] [-v]<br />
Table 10: DPADadmin upgradeprofiles Command Line Options<br />
Option Description<br />
-attrgroup OPTIONAL. Specifies the name of the Attribute Group to which the RADIUS Profile should be added. If<br />
this is not specified, the default RADIUS will be used.<br />
-domain OPTIONAL. Specifies the FQDN of the domain to set up. If omitted, the <strong>Digipass</strong> Configuration Domain<br />
will be used.<br />
-q Quiet mode, will not output commentary text.<br />
-l Record messages to a log file.<br />
-v Use verbose logging output.<br />
DPADadmin upgradeprofiles Command Sample<br />
dpadadmin upgradeprofiles -attrgroup RADIUS -domain test.vasco.com<br />
2.5.5 Delete all <strong>Digipass</strong>-Related Data from Active Directory<br />
<strong>Digipass</strong>-specific in<strong>for</strong>mation is not removed from Active Directory when <strong>Digipass</strong> <strong>Plug</strong>-<strong>In</strong> <strong>for</strong><br />
<strong>SBR</strong> is uninstalled from a computer.<br />
A custom VB script is available which will strip all in<strong>for</strong>mation related to the <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> from a<br />
domain. The data removed includes:<br />
<strong>Digipass</strong>-Configuration container if present<br />
Policy and Component records in container<br />
<strong>Digipass</strong>-Pool container if present<br />
<strong>Digipass</strong> records in container<br />
<strong>Digipass</strong>-Reserve container if present<br />
<strong>Digipass</strong> records in container<br />
All <strong>Digipass</strong> in the domain, including all <strong>Digipass</strong> Applications.<br />
All <strong>Digipass</strong> User Accounts<br />
Each <strong>Digipass</strong> User account is deleted by searching <strong>for</strong> Active Directory Users with the vasco-<br />
CreateTime attribute set (indicating that a <strong>Digipass</strong> User account has been created <strong>for</strong> that<br />
User). All vasco-UserExt attributes on the Active Directory User are reset.<br />
Note<br />
The script must be run in each domain from which data is to be removed.<br />
2.5.5.1 Run Delete Script on a Domain<br />
1. Get dpDeleteAll.vbs file from the CD \Windows\Utilities\VBScript directory and copy to<br />
the computer where you will run the command.<br />
2. Open cmd prompt, logged in as domain admin in the domain required.<br />
3. Enter the following:<br />
© 2006 VASCO Data Security <strong>In</strong>c. 36