Account Move/Rename Operation
To enable the account move/rename operation, providing the uniqueAccountAttribute for the configured LDAP server is mandatory.
For Novell (NetIQ) eDirectory, the default Unique Account Attribute (UUID) is GUID. If your connector uses a custom UUID attribute, specify that attribute instead. You need to configure this attribute using the following API PATCH request:
[
{
"op": "add",
"path": "/connectorAttributes/uniqueAccountAttribute",
"value": "GUID"
}
]
Handling Binary Attribute for Novell (NetIQ) eDirectory
To handle binary attributes for the eDirectory LDAP server, the attributesInBinaryFormat multi-valued configuration attribute is required. This attribute tells the connector which LDAP attributes to fetch in binary format.
Note
While this attribute is optional, the GUID attribute for Novell eDirectory is processed as a binary attribute. Therefore, it is crucial to include GUID in the attributesInBinaryFormat configuration in addition to setting it as the uniqueAccountAttribute.
[
{
"op": "add",
"path": "/connectorAttributes/attributesInBinaryFormat",
"value": ["GUID", "<binary attribute 2>"]
}
]
Provisioning for Move/Rename Operation
To handle move and rename operations, you need to send special provisioning attributes in an AttributeRequest. The following table lists the special attributes to handle the move and rename operations.
|
Attribute |
Description |
|---|---|
|
AC_NewName |
A string attribute that specifies the new name for the user. For example, cn=abc,uid=xyz |
|
AC_NewParent |
A string attribute that specifies the new organizational unit (OU) for the user. For example, ou=xyz,dc=pqr,dc=com |