This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
I have spent over an hour and I still cannot find out why I cannot delete an AD join point. Yes I know, *somewhere* in that forest of menu options is some little thing that is preventing me. But the application knows there is a problem but it tortures the user unnecessarily.
Can someone please give me an SQL command or something to find out what dependencies my AD Join Point has, to put me out of my misery?
this is 2.2 patch 2
I had the TAC engaged yesterday for another issue and we poked around in Oracle a bit. If I knew my way around the schema I'd be running an SQL query to find the dependencies.
In the longer term, having more expressive error messages would be a great thing.
I am assuming you checked all the usual spots:
Those are the only spots off the top of my head where it could be referenced. I am sure I am missing some more.
Thanks - I have checked those at least three times over - I even clicked into settings I have never touched before, just in case I missed something. The back story is that I had a Join Point called CORP, and then later I added a second join point called RES. RES has AD trust relationship to many other domains (including CORP). So I changed all my config to use RES instead - and this works like a charm. I deleted all the CORP Groups that I had added, and I also managed to Leave CORP domain. I just cannot delete the Join Point.
So far we use AD only for Admin GUI, Sponsor Portal admin groups and TACACS Policy Sets.
CSCuc55997 is one such enhancement.
AD can be used also in the sponsor group policy, client provisioning and posture policies.