Hi All

Im sure this will be an easy question for most of you
im trying to remove/cleanup excess groups and security from users with
a migration event
to do this i have a Nodeset with a current list of groups a user should
have and i would like to compare that to a NodeSet of the current Group
Membership and Security with a Parse Dn of course ie..
\METATEST\rlc\users\staff\groups\Staff_SS = Staff_SS

my code below almost works but instead of processing each group
membership is only processes the first one multiple times (because of
parse DN)

another way (preferable) to look at it would be to pass the group
memberships with parsed dn into a node set

any help appreciated


Code:
--------------------

<description>remove excess groups</description>
<conditions>
<and>
<if-local-variable mode="nocase" name="reevaluate" op="equal">true</if-local-variable>
</and>
</conditions>
<actions>
<do-set-local-variable disabled="true" name="vrgStaffGroupMembership" notrace="true" scope="policy">
<arg-node-set>
<token-attr name="Group Membership"/>
</arg-node-set>
</do-set-local-variable>
<do-set-local-variable disabled="true" name="vrgStaffSecurityEquals" notrace="true" scope="policy">
<arg-node-set>
<token-parse-dn length="1" start="-1">
<token-attr name="Security Equals"/>
</token-parse-dn>
</arg-node-set>
</do-set-local-variable>
<do-for-each disabled="true" notrace="true">
<arg-node-set>
<token-local-variable name="vrgStaffGroupMembership"/>
</arg-node-set>
<arg-actions>
<do-set-local-variable name="testgrp">
<arg-string>
<token-parse-dn length="1" start="-1">
<token-local-variable name="current-node"/>
</token-parse-dn>
</arg-string>
</do-set-local-variable>
<do-if>
<arg-conditions>
<and>
<if-local-variable name="testgrp" op="equal">$vrgStaffMembership$</if-local-variable>
</and>
</arg-conditions>
<arg-actions>
<do-veto/>
</arg-actions>
</do-if>
</arg-actions>
</do-for-each>
</actions>

--------------------


Steve


--
scarins
------------------------------------------------------------------------
scarins's Profile: http://forums.novell.com/member.php?userid=14224
View this thread: http://forums.novell.com/showthread.php?t=450602