Updating an LDAP directory

The cfldap tag lets you perform the following actions on LDAP directory entries:

• Add

• Delete

• Add attributes

• Delete attributes

• Replace attributes

• Change the DN (rename the entry)

These actions let you manage LDAP directory contents remotely.

You build a ColdFusion page that lets you manage an LDAP directory. The form displays directory entries in a table and includes a button that lets you populate the form fields based on the unique user ID.

The example ColdFusion page does not add or delete entry attributes or change the DN. For information on these operations, see Adding and deleting attributes of a directory entry and Changing a directory entry’s DN.

To keep the code short, this example has limitations that are not appropriate in a production application. In particular, it has the following limitations:

• If you enter an invalid user ID and click either the Update or the Delete button, ColdFusion generates a “No such object” error, because there is no directory entry to update or delete. Your application should verify that the ID exists in the directory before it tries to change or delete its entry.

• If you enter a valid user ID in an empty form and click Update, the application deletes all the attributes for the User. The application should ensure that all required attribute fields contain valid entries before updating the directory.

 community help (adobe.com)