List User Group Membership in Reports

By default, the report results for the Token Expiration Report and the All User report do no list group membership. However, the following procedure allows you to list all the user’s groups or only groups managed by RSA Authentication Manager.

Procedure 

1. Log on to the appliance using an SSH client.

2. Change directories:

   cd /opt/rsa/am/utils

3. Run one of the following commands:

   • To list all the user’s groups or only groups managed by AM, type the following, and then press ENTER:

     ./rsautil store -a update_config auth_manager.reports.principal.all_group true GLOBAL 500

   • To list the groups managed by AM, type the following, and then press ENTER:

     ./rsautil store -a update_config auth_manager.reports.principal.registered_group_only true GLOBAL 500

   • To disable listing all the user’s groups, type the following, and then press ENTER:

     ./rsautil store -a update_config auth_manager.reports.principal.all_group false GLOBAL 500

   • To disable listing the groups managed by AM, type the following, and then press ENTER:

     ./rsautil store -a update_config auth_manager.reports.principal.registered_group_only false GLOBAL 500

4. When prompted, enter your Operations Console administrator User ID, and press ENTER.

5. When prompted, enter your Operations Console administrator password, and press ENTER.

6. Restart all AM services on the primary instance and each replica instance:

   cd /opt/rsa/am/server

   ./rsaserv restart all