Environment
Identity Manager 4.7
Identity Manager 4.6
Situation
The information contained in the LDAP operational attributes are read-only. Clients cannot modify the attribute values. All of these operational attributes except creatorsName and ModifiersName are available only through LDAP. CreatorsName and modifiersName are available through LDAP and NDAP.
They are not returned in search results.
They are not returned in search results.
Resolution
The information contained in the LDAP operational attributes are read-only. The IDM engine cannot modify the attribute values. All of these operational attributes are not available in IDM drivers. Adding them manually in the XML document will not return a value.
For information on these attributes see documentation found here: https://www.novell.com/documentation/developer/ndslib/pdfdoc/schm_enu/schm_enu.pdf
Section: 7 LDAP Operational Attributes 947 7LDAP Operational Attributes
Below is a list of some common LDAP operational attributes that cannot be accessed.
createTimeStamp
creatorsName
entryFlags
federationBoundary
localEntryID
modifiersName
modifyTimeStamp
structuralObjectClass
subordinateCount
subschemaSubentry