I also need to do the same thing like adding new groups and assigning
users
to existing groups using ruby-net-ldap. However, the library doesn't
seem to support it.
If we delete the old cn and create a new one, the unicodePwd and other
attributes might
not be able to be replicated to the new entry.

I'm thinking of using the ActiveLDAP because it is capable of managing
the user Groups.
But I want to support a dynamic connection to secondary AD servers.
I'm not sure if it can be
supported in ActiveLDAP.

On Apr 28, 11:04 pm, Glen Holcomb <damnbig... / gmail.com> wrote:
> [Note:  parts of this message were removed to make it a legal post.]
>
> On Sun, Apr 27, 2008 at 12:00 PM, Dave Smith <noobp... / gmail.com> wrote:
> > I need to move some user objects from one OU to another.  Is there a way
> > to
> > do this with net/ldap?  This is basically done by renaming the DN, so the
> > CN
> > stays the same but the rest of whatever changes.  Can anyone show me an
> > example of doing this with net/ldap?
>
> I was wanting to do the same thing recently.  However it looks like all you
> can do directly is change the cn (the dn is untouchable directly).  You
> could always read the data into memory, delete the origional entry, and
> create a new one with the original data.
>
> --
> "Hey brother Christian with your high and mighty errand, Your actions speak
> so loud, I can't hear a word you're saying."
>
> -Greg Graffin (Bad Religion)