LDAP_SERVER_PERMISSIVE_MODIFY is a SupportedControl which was defined by Microsoft stating that it "Allows an LDAP modify to work under less restrictive conditions. Without it, a delete will fail if an attribute done not exist, and an add will fail if an attribute already exists. No data is needed in this control."

The Microsoft defined permissive modify request control. The OID for this control is 1.2.840.113556.1.4.1413, and it does not have a value.

This control can only be used with LDAP Modify Requests and changes the behavior of the modify operation as follows:

In other words, a Modify Request add modification ensures that the attribute contains the specified attribute value, and a delete modification ensures that the attribute does not contain the specified attribute value.

LDAP_SERVER_PERMISSIVE_MODIFY is passed with a a Modify Request with no value and there is no expected response from the SupportedControl

Other LDAP Server Implementations #

We have discovered that the following support this control:

More Information#

There might be more information for this subject on one of the following: