Grouper Developers Forum

[Chris Hyzer <>]

If you set a grouperLoaderLdapGroupsLike then it should delete the group… try it out.   E.g. myLdapGroups:%  or something…

 

Thanks,

Chris

 

From: [mailto:] On Behalf Of Gagné Sébastien
Sent: Monday, June 11, 2012 3:15 PM
To:
Subject: [grouper-dev] Deleted LDAP groups with Loader LDAP

 

Hello,

In my Grouper installation I have the PSP configured as well as the Loader LDAP.

 

One problem I face is if I delete a group in the LDAP (AD in my case) it won’t be reflected in Grouper even if I run the Loader LDAP afterward. If I do a PSP sync (as in the full sync every night) the Group is back in AD. If I delete from Grouper everything is fine since the PSP will delete the group right away.

 

The way I understand the LDAP Loader (LDAP_GROUP_LIST in my case) is that it will list all the groups and create this list back in Grouper. Since the deleted group isn’t part of the list it won’t be created, but it won’t be deleted since the loader doesn’t do a Diff with what is already there.

 

Is it normal behaviour ? Is there a way to “bring” deleted groups in Grouper with the loader ?

 

Maybe I could try using the PSP with the LDAP-to-Grouper config, it should give me Diff feature and have the AD as the authoritative source in the full syncs right ?

 

Thanks

 

 

Sébastien Gagné,     | Analyste en informatique

514-343-6111 x33844  | Université de Montréal,

                     | Pavillon Roger-Gaudry, local X-100-11