Novell Identity Manager 3.6
Novell eDirectory 8.8.3 FTF3
Novell iManager 2.7.2



Active Driectory Driver with a Job (Subscriber channel event)


Filter Setting on Driver:


<filter-class class-name="Group" publisher="sync"
publisher-create-homedir="true" publisher-track-template-member="false"
subscriber="sync">
<filter-attr attr-name="CN" merge-authority="edir" publisher="notify"
publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="Description" merge-authority="edir"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="Full Name" merge-authority="app"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="Member" merge-authority="edir"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
</filter-class>

<filter-class class-name="User" publisher="sync"
publisher-create-homedir="true" publisher-track-template-member="false"
subscriber="sync">
<filter-attr attr-name="CN" merge-authority="default"
publisher="ignore" publisher-optimize-modify="true"
subscriber="ignore"/>
<filter-attr attr-name="Given Name" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="Surname" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="Description" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
<filter-attr attr-name="DirXML-ADAliasName" merge-authority="default"
publisher="sync" publisher-optimize-modify="true" subscriber="ignore"/>
</filter-class>


I have a setup a JOb on the Driver. Scoping Some Few Groups in
Identity Vault, Associataed with AD Groups. /This object only.


I want to Loop through the Group Members for Each Scoped Group on the
Job, and Want to get the DN of the User in the Group, and perform some
actions with that DN.


The following rules on the Subscribeer Ctp has been done


<rule>
<description>Job Test</description>
<conditions>
<and>
<if-operation mode="case" op="equal">trigger</if-operation>
<if-class-name mode="nocase" op="equal">Group</if-class-name>
<if-xpath op="true">'MyJob'</if-xpath>
</and>
</conditions>




in the Actions; I have,




<do-set-local-variable name="CurrentGroupDN" scope="policy">
<arg-string>
<token-xpath expression="@src-dn"/>
</arg-string>
</do-set-local-variable>
<do-set-local-variable name="QueryMembers" scope="policy">
<arg-node-set>
<token-src-attr class-name="Group" name="Member">
<arg-dn>
<token-local-variable name="CurrentGroupDN"/>
</arg-dn>
</token-src-attr>
</arg-node-set>
</do-set-local-variable>
<do-for-each>
<arg-node-set>
<token-local-variable name="QueryMembers"/>
</arg-node-set>
<arg-actions>
<do-set-local-variable name="CurrentMember" scope="policy">
<arg-string>
<token-xpath
expression="$current-node/attr[@attr-name='Member']/value"/>
</arg-string>
</do-set-local-variable>
<do-set-local-variable name="CurrentMember_" scope="policy">
<arg-string>
<token-xpath
expression="$QueryMembers/nds/output/instance/attr[@attr-name='Member']/value"/>
</arg-string>
</do-set-local-variable>
<do-trace-message>
<arg-string>
<token-text xml:space="preserve">--></token-text>
<token-local-variable name="CurrentMember"/>
<token-text xml:space="preserve">--></token-text>
<token-local-variable name="CurrentMember_"/>
</arg-string>
</do-trace-message>
</arg-actions>
</do-for-each>




But of my these XPAth expressions never retuened the DN for the current
User in the Current triggerd Group.



Trace3 Query:


<nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.1.4427">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<query class-name="Group"
dest-dn="\TEST\TESTMETA\global\PLACEHOLDER\Groups\Secur ity Groups\Group
Of Hornes" scope="entry">
<read-attr attr-name="Member"/>
</query>
</input>
</nds>
[03/03/09 01:07:47.383]:MYDRIVER: Pumping XDS to
eDirectory.
[03/03/09 01:07:47.383]:MYDRIVER: Performing operation query
for \TEST\TESTMETA\global\PLACEHOLDER\Groups\Security Groups\Group Of
Hornes.
[03/03/09 01:07:47.398]:MYDRIVER: Query from policy result
[03/03/09 01:07:47.398]:MYDRIVER:
<nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.1.4427">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<instance class-name="Group"
qualified-src-dn="O=TESTMETA\OU=global\OU=PLACEHOLDER\OU=Groups\ OU=Security
Groups\CN=Group Of Hornes"
src-dn="\TEST\TESTMETA\global\PLACEHOLDER\Groups\Secur ity Groups\Group
Of Hornes" src-entry-id="35009">
<association state="associated">HIDDEN-ASSOCIATION</association>
<attr attr-name="Member">
<value timestamp="1236032891#69"
type="dn">\TEST\TESTMETA\global\BASE\CAMPUS\SHARED \Users\Couese
Two</value>
<value timestamp="1236032891#79"
type="dn">\TEST\TESTMETA\global\BASE\CAMPUS\SHARED \Users\Course
One</value>
</attr>
</instance>
<status level="success"></status>
</output>
</nds>








I hope someone can help me ehre

Regards,
Maqsood.


--
love anything that talks binary!
------------------------------------------------------------------------
belaie's Profile: http://forums.novell.com/member.php?userid=4368
View this thread: http://forums.novell.com/showthread.php?t=362441