Overview of Tools

InTrust comes with a set of scripts and utilities that serve a variety of purposes. Using these tools, you can do the following:

• Automate InTrust installation by performing it in unattended mode.
  The tools for InTrust installation are described in the Deployment Guide.
• Provide the permissions and database tables required for InTrust installation and reporting.
  The tools for database configuration are described in the Deployment Guide.

• Manipulate repositories and their contents flexibly. For details about repository-related tools, see Understanding InTrust Repositories and Repository Indexing for Advanced Search Capabilities.
• Clean up temporary database tables.
  See Cleanup of Temporary Tables.
• Customize the severity of real-time alerts.
  See Alert Severity Customization.
• Change the InTrust server account.
  See Changing the Account Used by InTrust Services.
• Cleanly remove the InTrust Server component from a computer.
  See Removing Unneeded InTrust Servers.
• Customize various operational parameters in InTrust.
  See Organization Parameter Editor.
• Estimate the health and efficiency of your real-time event collections.
  See Tracking Real-Time Event Collection State.

Cleanup of Temporary Tables

DBCleaner.exe Utility

Some reports may create temporary tables (which have prefixes such as T_QCWP_TEMP_, TEMP_MACRO_ and TEMP_) in the data sources they work with. To avoid excessive database size growth, you can periodically remove temporary tables using the DBCleaner.exe command-line utility. This tool is located in the InTrust\Tools\Database CleanUp folder of your InTrust distribution.

When running the DBCleaner.exe utility, specify the following parameters:

1. Parameter to select tables by. Specify at least one of the following:
   • Table name prefix
   • Table owner

Also, you can use the /from and /to parameters to delete tables created in the specified time interval. The date format is YYYY-MM-DD hh:mm:ss.

2. Connection string. It must be typed in the following format and should be enclosed in double quotation marks:
   "Provider=provider;Data Source=datasource;Initial Catalog=database;UID=username;PWD=password;"
   -OR-
   "Provider=provider;Data Source=datasource;Initial Catalog=database;Integrated Security='SSPI'"
   where:
   • Provider—OLEDB provider (for Microsoft SQL Server, it is “SQLOLEDB”)
   • Data Source—server name
   • Initial Catalog—database name
   • UID—user login name
   • PWD—user password
   • Integrated Security—specify this parameter if Windows authentication is in use

The format of the command line to run the utility should be like the following:

DBCleaner[.exe] /p[refix]:PREFIX /u[ser]:TABLE_OWNER [/from:DATE_FROM] [/to:DATE_TO] /c[onnection string]:CONNECTION_STRING

For example:

DBCleaner.exe /p:TEMP_ /u:DBO /from:2007-12-31 /to:2008-01-31 /c:"provider=SQLOLEDB; data source=DBServer; initial catalog=DBName; UID=UserName; PWD=test"

SQL Scripts

The TempCleaner_2000.sql and TempCleaner_2005.sql scripts are located in the same folder as the DBCleaner.exe command-line utility and have the same functionality.

To customize the parameters, edit them directly in the script code before running the scripts.

Alert Severity Customization

The ITCustomAlertSeverity utility allows you to define custom severity level for InTrust real-time alerts.

It is located in <installation_folder>\Server\ADC\SupportTools\Win32.

Below are the examples of command line syntax that should be used when running the utility:

ITCustomAlertSeverity -add <name> <severity_value> <color> <icon_file>

ITCustomAlertSeverity –remove <name>

ITCustomAlertSeverity -list

ITCustomAlertSeverity –export-icon <name> <icon_file>

The options are as follows:

Changing the Account Used by InTrust Services

Use the adcsrvacc command-line utility to change the account of the Quest InTrust Server and Quest InTrust Real-Time Monitoring Server services. The adcsrvacc utility also lets you create a Service Connection Point (SCP) container and change its permissions and properties after starting the InTrust Server service.

This utility is located in <InTrust_installation_folder>\Server\ADC\SupportTools.

To provide automatic creation of SCP or changing its permissions and properties by InTrust means, you should perform one of the following procedures before running adcsrvacc:

• Open the ADSI Edit snap-in and specify the following rights for CN=System, DC=<Domain> in the Active Directory configuration partition for the account under which you will run the adcsrvacc utility: Create All Child Objects, Read Permissions, Modify Permissions, Read All Properties, Write All Properties. These permissions must be applied to the This object and all child objects scope for this container.
• Open the ADSI Edit snap-in and create the CN=Quest InTrust, CN=System, DC=<Domain> in the Active Directory configuration partition. Assign the following rights for this container for the account under which you will run the adcsrvacc utility: Create All Child Objects, Read Permissions, Modify Permissions.

Run the utility with the following parameters:

adcsrvacc.exe -user <user> [-password <password>] [-restart] [-nocheck]

Here, <user> is the name of the user account (in the DomainName\UserName format) you want the services to use from now on; <password> is an optional parameter specifying the password of this account. If the password is not supplied, you will be asked to specify it in a secure prompt.

The optional -restart parameter automatically restarts the services after the account change.

The optional -nocheck parameter makes the utility skip the step where it checks whether the new account has the necessary privileges for access to the InTrust configuration database.

For information about the privileges required by the InTrust Server account, see System Requirements.