NSD1059 How to delete an attribute value from a LDAP object with AAM3
Fact
- NordicEdge Automatic Account Manager 3
- Microsoft Active Directory
- Novell eDirectory
- Sun ONE
- Open LDAP
- OpenDS
Situation
Deletion of an attribute value in AAM version 3 differs from how it is done in version 2.x.
In version 3, an session attribute with the an empty value needs to created and the written back to the LDAP
object to force an removal of that attribute.
Solution
Steps:
1. Create an Database for the LDAP database in which the objects resides.
2. Make sure you have the AAM plugin ”Format Attribute Value” version 1.3, see below:
3. Create an Action with the type "Format Attribute Value"
Select an action name
Set the attributename to the attribute that should be removed, in this example "title"
Select the "Delete Value" option
4. Create an Action with the type "Write to LDAP"
Select an action name
Specify the attributename that should be removed (title) in the "Save Attributes" field.
Enter "false" in the "Only has been modified" field
5. Create a Policy
Select the LDAP Database
Select the search base, Scope, searchfilter, get attributes
6. In the Actions tab in the Policy select the two actions that was created in step 3 and 4.
7. The policy can be executed.
Disclaimer
The origin of this information may be internal or external to Nordic Edge™. Nordic Edge™ makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Nordic Edge™ makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners.
Nordic Edge Support – www.nordicedge.se
