Using dzdump
The dzdump
command line program enables you to view and capture the current content of the authorization cache. You can use command line options to control the information contained in the output for the command.
The syntax for the dzdump
command is:
dzdump [/d [directory-path] ] [/w=screen-width] [/s] [/n] [/g] [/l] [/a]
[/r] [/i] [/t] [/z] [/u] [/h]
If you specify no command line arguments, the dzdump
command returns complete in‑memory information from the authorization agent (dzagent
) cache. You can use the following command line arguments to refine the output for the command:
Use this option | To do this |
|
Dump cache files from the default location or a specified location. You can use this option with a directory path to dump cache files from a specified location. For example, to dump cache files from the directory
Note that you cannot use the |
|
Use the specified
|
|
Display security identifier (SID) mappings |
|
Display name mappings |
|
Display assignee mappings |
|
Display assignments in the joined zone hierarchy |
|
Display assignments for security identifiers (SID) |
|
Display role definitions |
|
Display right definitions |
|
Display access token information |
|
Display zone hierarchy |
|
Display recent user logon activity |
|
Displays the command help |
You can use any combination of display options to display only the information of interest. If you do not specify any display options, the dzdump
command displays all of the information in the authorization cache.
You must be logged on as a local administrator to run the dzdump
command. You should note that the command output from a dzdump
command can contain sensitive information. You should only use the dzdump
command if Centrify Support recommends you do so.
Depending on the display options you specify, the command returns detailed information about the authorization cache.