I've got a question that is basically the combination of 'Active
(http://tinyurl.com/oj46h88) and 'AD driver user deletion failed'

Our AD driver is throws errors when it tries to delete user objects that
have child objects beneath them (mostly of type
"msExchActiveSyncDevices"). I see the common approach would be to do a
query to return all of the object's children, and then iterate through
the node set, deleting objects. I mentioned this to our AD guy, and he
said in the AD UIs, he can set "use delete subtree server control"
(which seems to correspond to the LDAP extension
LDAP_SERVER_TREE_DELETE_OID / One of Geoff's articles
('Strange IDM Driver deployment error' (http://tinyurl.com/o4z6jmp))
mentions that support for this extension was added to > eDir 8.8 SP 8,
so I'm wondering if support for that extension was available to IDM, and
some how exposed to the AD driver?

Is it possible to have the directory based drivers invoke LDAP server


liamr's Profile: https://forums.netiq.com/member.php?userid=1044
View this thread: https://forums.netiq.com/showthread.php?t=53176