What is the correct way to delete a non-leaf node

[aesoper101]

Hi, I have a non-leaf node in OpenLDAP directory. I want to delete the node. One approach is to delete all the children from the bottom most level in the tree and then finally delete the non-leaf node. Is there any other approach to solve this issue?

When I try to delete the non-leaf node, sends me the following exception:

LDAP Result Code 66 "Not Allowed On Non Leaf": subordinate objects must be deleted first

[cpuschma]

You'll have to empty the container first before you can delete it. You can also use the Subtree Delete Control within your delete request to delete all child elements.

ldap/control.go

Lines 533 to 535 in 7d3b8d4

	func NewControlSubtreeDelete() *ControlSubtreeDelete {
	return &ControlSubtreeDelete{}
	}

[aesoper101]

@cpuschma Hi , I had use the Subtree Delete Control like this

func TestDeleteNonLeafNode(t *testing.T) {
	conn, err := ldap.DialURL("ldap://localhost:389")
	assert.Nil(t, err)
	assert.NotNil(t, conn)

	defer conn.Close()

	control := make([]ldap.Control, 0)
	control = append(control, ldap.NewControlSubtreeDelete())

	simpleBindRequest := ldap.NewSimpleBindRequest("cn=admin,dc=example,dc=org", "admin", control)

	_, err = conn.SimpleBind(simpleBindRequest)
	assert.Nil(t, err)

	delReq := ldap.NewDelRequest("o=test,dc=example,dc=org", control)
	err = conn.Del(delReq)
	t.Log(err)
	assert.Nil(t, err)
}

but not working

[james-d-elliott]

Can you show the ldap.Error field values?

[kumo-rn5s]

Hi, i got same error.
I just discovered that my LDAP server did not have the SubtreeDelete Control enabled.