I have a problem with manager attribute in Sun Directory Server. I set this attribute for a user in the directory, e.g. cn=testmanager,dc=test,dc=com and when I change manager's dn this change is not propagated in manager attributes.
For example:
I have two users:
dn: cn=testmanager,dc=test,dc=com
and
dn: cn=testperson,dc=test,com
manager: cn=testmanager,dc=test,dc=com
Then I modify manager's dn to:
dn: cn=testmanagerchange,dc=test,dc=com
But manager attribute in cn=testperson,dc=test,com doesn't change is still equal to cn=testmanager,dc=test,dc=com. In Active Directory it works fine.
Exact definition of attribute:
Name: manager
OID: 0.9.2342.19200300.100.1.10
Aliases: -
Origin: RFC 1274
Description: Standard LDAP attribute type
Syntax: 1.3.6.1.4.1.1466.115.121.1.12 (DN)
Multivalued: Yes
I found the answer.
In Sun Directory Server you have to set the list of attributes that should keep reference integrity. Some attributes are set by default, however you have to manually add manager attribute.
This is an article that explains this issue: http://docs.sun.com/app/docs/doc/820-2763/fsush?a=view.
Thanks for your help.