Implementing the Lookaside Database

Here is a broad overview of how Privileged Identity Manager implements the lookaside database:
cminder12801
The problems and solutions outlined here are for informational purposes only. Actual settings are correct upon installation and most users need not take any action.
Here is a broad overview of how Privileged Identity Manager implements the lookaside database:
  • The relevant tokens in the seos.ini file are set.
  • The relevant symbolic links in the /opt/CA/AccessControl/exits directory are defined.
  • The command /opt/CA/AccessControl/bin/sebuildla -a was issued to build the lookaside database.
The sebuildla utility taps into the native resolution mechanisms such as the files and NIS to build the lookaside database.
No security-sensitive information (such as password, location of the home directory, or gecos) is kept in the lookaside tables. The lookaside database tables contain only a numeric ID number and a name.
Once the lookaside database is created, update it using the sebuildla utility. You do
not
need to restart Privileged Identity Manager.