KNOWN ISSUE: ‘Insufficient Rights’ error while deleting a leaf object in Active Directory

Known issues and bugs list

Moderator: Support

KNOWN ISSUE: ‘Insufficient Rights’ error while deleting a leaf object in Active Directory

Postby Support » Mon Sep 06, 2010 2:21 pm

SYMPTOMS

Deleting a leaf object in Active Directory results in ‘Insufficient Rights’ error.

CAUSE

When deleting an object from the directory, LDAP Administrator sends an LDAP Delete request to the directory server with a Tree Delete control attached if supported. It causes an ‘Insufficient Rights’ error if a user doesn’t have ‘Delete Subtree’ permission on the object being deleted.

WORKAROUND

Force LDAP Administrator not to use the Tree Delete control:
- Right click on an appropriate profile node in the tree and select ‘Properties’ in the popup menu
- In the opened dialog, select the LDAP Settings page and click the Advanced button
- In the appeared dialog, select the Miscellaneous page and check the ‘Never use Tree Delete control’ item in the ‘Advanced options’ list.
Support
 
Posts: 883
Joined: Sun Aug 12, 2001 12:00 am

Return to Known Issues [read only]

Who is online

Users browsing this forum: No registered users and 0 guests

cron