[ldaptemplate-user] deleting attribute of Active Directory item

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi All,

I'm trying to delete a "member" attribute of an Active Directory group with
the following code:

=====================================================================================
        DistinguishedName groupDN = getGroupDN(groupName);
        DistinguishedName userDN = getUserDN(userName);
        ModificationItem[] mods = new ModificationItem[1];
        mods[0] = new ModificationItem(DirContext.REMOVE_ATTRIBUTE, new
BasicAttribute("member", userDN));
        ldapTemplate.modifyAttributes(groupDN, mods);
=====================================================================================

And I'm getting the following error:

=====================================================================================
net.sf.ldaptemplate.UncategorizedLdapException: Operation failed; nested
exception is javax.naming.directory.InvalidAttributeValueException:
Malformed 'member' attribute value; remaining name 'cn=HRAccessTest,
cn=Users, dc=main, dc=chronossystems, dc=com'
Caused by: javax.naming.directory.InvalidAttributeValueException: Malformed
'member' attribute value; remaining name 'cn=HRAccessTest, cn=Users,
dc=main, dc=chronossystems, dc=com'
    at com.sun.jndi.ldap.LdapClient.encodeAttribute(LdapClient.java:951)
    at com.sun.jndi.ldap.LdapClient.modify(LdapClient.java:920)
    at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1433)
    at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(
ComponentDirContext.java:255)
    at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(
PartialCompositeDirContext.java:172)2006-07-28 18:46:34,458 ERROR -
APPLI9999 Exception class net.sf.ldaptemplate.UncategorizedLdapException :
Operation failed; nested exception is
javax.naming.directory.InvalidAttributeValueException: Malformed 'member'
attribute value; remaining name 'cn=HRAccessTest, cn=Users, dc=main,
dc=chronossystems, dc=com'

    at javax.naming.directory.InitialDirContext.modifyAttributes(
InitialDirContext.java:153)
    at net.sf.ldaptemplate.LdapTemplate$9.executeWithContext(
LdapTemplate.java:508)
    at net.sf.ldaptemplate.LdapTemplate.executeWithContext(LdapTemplate.java
:408)
    at net.sf.ldaptemplate.LdapTemplate.executeReadWrite(LdapTemplate.java
:403)
    at net.sf.ldaptemplate.LdapTemplate.modifyAttributes(LdapTemplate.java
:505)
    at
com.chronossystems.HRAccess.GroupGenerator.LDAP.LdapDAOImpl.deleteUserFromGroup
(LdapDAOImpl.java:53)
    at
com.chronossystems.HRAccess.GroupGenerator.GroupGenerator.processEmployeesInADGroup
(GroupGenerator.java:122)
    at
com.chronossystems.HRAccess.GroupGenerator.GroupGenerator.processReport(
GroupGenerator.java:95)
    at com.chronossystems.HRAccess.GroupGenerator.GroupGenerator.generate(
GroupGenerator.java:41)
    at com.chronossystems.HRAccess.GroupGenerator.GroupGenerator.main(
GroupGenerator.java:207)
=====================================================================================

The groupDN and userDN objects has been queried successfully and they seems
ok. (groupDN = cn=HRAccessTest, cn=Users, dc=main, dc=chronossystems,
dc=com, userDN = cn=Istvan Zsamboki, cn=Users, dc=main, dc=chronossystems,
dc=com). The given group has a member attribute and the value of it is the
dn of the given user.

My application context file is the following:

=====================================================================================
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN"
    "http://www.springframework.org/dtd/spring-beans.dtd">
<beans>
    <bean id="contextSource" class="
net.sf.ldaptemplate.support.LdapContextSource">
        <property name="urls" value="ldap://main.chronossystems.com:389" />
        <property name="base" value="DC=chronossystems,DC=com" />
        <property name="userName" value="CN=Istvan
Zsamboki,CN=Users,DC=main,DC=chronossystems,DC=com" />
        <property name="password" value="xxxxxx" />
        <property name="authenticatedReadOnly" value="true" />
        <property name="baseEnvironmentProperties">
            <map>
                <entry key="java.naming.referral" value="follow" />
            </map>
        </property>
    </bean>
    <bean id="ldapTemplate" class="net.sf.ldaptemplate.LdapTemplate">
        <constructor-arg ref="contextSource" />
    </bean>
    <bean id="ldapDAO" class="
com.chronossystems.HRAccess.GroupGenerator.LDAP.LdapDAOImpl">
        <property name="ldapTemplate" ref="ldapTemplate" />
        <property name="base" value="DC=chronossystems,DC=com" />
    </bean>
</beans>
=====================================================================================

What is wrong?

Thanks in advance,
zsazsa