The DN of your "modify" CFLDAP tag needs to be the DN of the actual object. You are setting it only to the domain itself.
By your query, I would assume a full DN may look like: DN="cn=ian, ou=users, dc=domain, dc=gov, dc=uk" (To clarify because it may be confusing, the DN (distinguished name) begins with "CN" (common name). Don't get those two mixed-up. In AD, the CN is unique within the domain. The DN is just the entire path the CN value.) I don't remember if I sent it to you, but I have an LDAP user dump page that will show you most of the LDAP attributes you may ever use. One of those is the DN attribute. If you use that page, you will see the actual values. Also, make sure your CF services are running as a domain account with permissions to modify AD objects. Some people setup the CF account as a domain admin. That will work, but could be dangerous. I gave our CF service account the "Account Operator" permission in the AD. That means it can change just about anything except a domain admin account. M!ke -----Original Message----- From: Ian Vaughan [mailto:[EMAIL PROTECTED] Sent: Monday, February 13, 2006 2:55 AM To: CF-Talk Subject: RE: Coldfusion and Active Directory Hi Mike I have tried the following below and I am getting this error ? Any ideas on why this is happening ? Error Occurred While Processing Request An error has occured while trying to execute query :[LDAP: error code 32 - 0000208D: NameErr: DSID-031001C6, problem 2001 (NO_OBJECT), data 0, best match of: 'DC=domain,DC=gov,DC=uk' ]. One or more of the required attributes may be missing/incorrect or you do not have permissions to execute this operation on the server --------------------- <!--- Query the Active Directory (AD) for information about the user ---> <cfldap action="query" name="qryUserInfo" attributes="dn, cn, mail, sn, title, displayName, sAMAccountName, givenName, TelephoneNumber" start="OU=USERS,dc=domain, dc=gov, dc=uk" scope="SUBTREE" startrow="1" filter="(&(objectClass=*)(sAMAccountName=#form.accname#))" maxRows="1" server="server" port="389" username="username" password="password"> <!--- Modify the user's AD information ---> <cfldap action="modify" modifyType="replace" attributes="#form.title#=Title¡telephoneNumber=#form.tel#" delimiter="¡" dn="dc=domain, dc=gov, dc=uk" server="server" port="389" username="username" password="password"> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:232106 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
