Procedure to determine the eDirectory Agent

To determine whether eDirectory Agent is receiving a user name and identifying that user:

Steps

Activate eDirectory Agent logging (see Enabling eDirectory Agent diagnostics).
Open the log file you have specified in a text editor.
Search for an entry corresponding to the user who is receiving the incorrect policy.
An entry like the following indicates that eDirectory Agent has identified a user:
```
WsUserData::WsUserData()
User: cn=Admin,o=novell (10.202.4.78) 
WsUserData::~WsUserData()
```
In the example above, the user Admin logged on to eDirectory server, and was identified successfully.
If a user is being identified, but is still receiving the expected policy, check your policy configuration to verify that the appropriate policy is applied to that user, and that the user name in the Forcepoint Security Manager corresponds to the user name in Novell eDirectory.
If the user is not being identified, verify that:
- The user has a Novell eDirectory account.
- The user is logging on to a domain that is included in the default root context for eDirectory user logons.
- The user is not bypassing a logon prompt.