Removal of member attribute from group reports null string when user is deleted

  • 3999151
  • 22-Feb-2008
  • 26-Apr-2012

Environment

Novell eDirectory 8.7.3.9 for All Platforms
Novell eDirectory 8.8 for All Platforms

Situation

This scenario has been tested on SLES 10 with eDir 8.7.3.9, 8.8.1 and 8.8.2:
  1. Create a user
  2. Create a group
  3. Add the user to the group
  4. Run an instance of LDAP event monitoring against any of the replicas holding the group. Be sure to "register" for the EVT_DELETE_VALUE event for the Group object class
  5. Remove the user from the group: the event monitoring instance will correctly report that a delete for attribute 'member' with a value of the 'user DN' was removed from the group
  6. Add the user back to the group
  7. Delete the user: the event monitoring instance will incorrectly report that a delete for attribute 'member' with a value of '' (null) was removed from the group
It appears that the event monitor is failing to report the user DN when a user is removed from a group by way of the user object being deleted, as opposed to just having the group membership removed.

Resolution

This has been fixed already with the latest eDirectory patches.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.