1. You can't delete the attribute. You should modify the attribute.
Change MODIFYTYPE to "Replace". Then, you should set this attribute to
all groups EXCEPT the one you want to remove.
2. Use ADSI in a COM object. This is, in my opinion, the easiest
solution. I have opted to use this method rather than messing with CF's
LDAP issues.
3. For #1, make sure you are running your CF service using a domain
account that has, at least, Account Operator permissions on the domain.
________________________________
From: Bob Flynn [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 04, 2004 4:05 PM
To: CF-Talk
Subject: CFLDAP frustration
I am trying to use cfldap to delete a specific user (kcorrea) from a
group BL-BUS-MSIS2005. I ran a query with attribute="memberof" to verify
that the user does belong to the group. The user also belongs to several
other groups. I want to be able to delete this user from the particular
group, while retaining all the other groups that the user is a member
of. How can I delete a specific value from a multi-valued attribute for
an entry? Here is the code I have so far:
<cfldap action=""> modifytype="delete"
attributes="member=CN=kcorrea,OU=Accounts,DC=ads,DC=iu,DC=edu"
dn="CN=BL-BUS-MSIS2005,OU=BL-BUS-SAGP-WEB-USERS,OU=BL-BUS,OU=BL,DC=ads,D
C=iu,DC=edu"
server="servername"
port="389"
username="username"
password="password">
However, I get the following error:
An error has occured while trying to execute modify :[LDAP: error code
53 - 00000561: SvcErr: DSID-031A0FBC, problem 5003 (WILL_NOT_PERFORM),
data 0. One or more of the required attributes may be missing/incorrect
or you do not have permissions to execute this operation on the server.
I also get this error if I try to do a similar "add" instead of a
"delete".
If I just do action="" like the code shows below:
<cfldap action="">
attributes="member=CN=kcorrea,OU=Accounts,DC=ads,DC=iu,DC=edu"
dn="CN=BL-BUS-MSIS2005,OU=BL-BUS-SAGP-WEB-USERS,OU=BL-BUS,OU=BL,DC=ads,D
C=iu,DC=edu"
server="servername"
port="389"
username="username"
password="password">
I get the following error:
Attribute validation error for tag CFLDAP.
The tag has an invalid attribute combination:
action,attributes,dn,password,port,server,username. Possible
combinations are:<li>Required attributes: 'action,dn'. Optional
attributes:
'actionattributes,delimiter,password,port,rebind,referral,secure,server,
timeout,username'.
Does anyone have any suggestions?
Sincerely,
Karen
Bob's Gradudate Assistant
________________________________
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
