On a delete from the vault to AD, I am tacking on an extra delete in the
Command channel on the SUB. When certain users are deleted, I need to
delete an extra object in AD that is not associated. It is not working,
and I am getting zero errors or warnings on any of the traces.

To simplify I simply hardcoded an extra user to delete and that is not
working. I am using LDAP format which I thought would be ok. Should I
use a differnt naming format? THanks!
<conditions>
<and>
<if-class-name mode="nocase" op="equal">User</if-class-name>
<if-operation mode="case" op="equal">delete</if-operation>
</and>
</conditions>
<actions>
<do-delete-dest-object class-name="user" when="after">
<arg-dn>
<token-text
xml:space="preserve">CN=user1,OU=Users,DC=corp,DC= acme,DC=com</token-text>
</arg-dn>
</do-delete-dest-object>
</actions>


--
jeff@linux1:~> glxgears
120308 frames in 5.0 seconds = 24061.553 FPS
------------------------------------------------------------------------
jedijeff's Profile: http://forums.novell.com/member.php?userid=4732
View this thread: http://forums.novell.com/showthread.php?t=410395