Skip to Content
0
Jun 10, 2020 at 07:31 AM

Insert LDAP Operation to Assign User to Group not Working

214 Views

Hello Experts,

I am trying to add a user in AD group using insert in LDAP connector. I am getting getting INSUFF_ACCESS_RIGHTS) error code back from AD. I have been advised by Infra team user do have sufficient access.

When I tried Modify operation, user is added to the group but LDAP call is deleting existing members of that group.

LDAP Insert Query ->
{dn=CN=GrTesting,OU=Groups,OU=APAC,DC=global,DC=company,DC=com,DC=au, DistinguishedName_Previous=null,

attributes={ObjectClass=ObjectClass: group, member=member: cn=Pushkar Patel,OU=User Accounts,OU=Test,OU=APAC,DC=global,DC=company,DC=com,DC=au}}


I am using below XML schema to create above query.

http://www.w3.org/2001/XMLSchema">
<xs:element name="Schema">
<xs:complexType>
<xs:sequence>
<xs:element type="xs:string" name="objectClass"/>
<xs:element type="xs:string" name="distinguishedName"/>
<xs:element name="Attributes">
<xs:complexType mixed="true">
<xs:sequence>
<xs:element type="xs:string" name="member" minOccurs="0"/>
</xs:sequence>
</xs:complexType>
</xs:element>
</xs:sequence>
</xs:complexType>
</xs:element>
</xs:schema>

Any suggestion what could be wrong here?

Thanks,
Pushkar