What's the best way to add a user to an AD group?

I currently have a policy (in my AD driver) that modifies the Members
attribute on the specified group and it does this after current
operation (i.e. the document has an extra modify operation in it), it
works but I also get a lot of 'LDAP unwilling to perform' errors.

I was wondering if I could just have a rule that modifies the Group
Membership attribute of the user and adds this to the current operation
to avoid the errors.

Many Thanks

Manchester Metropolitan University
mikepreece's Profile: http://forums.novell.com/member.php?userid=611
View this thread: http://forums.novell.com/showthread.php?t=344705