3.1.5.4 Deleting a Wireless or Wired Policy Object on Active Directory

When the administrative-side plug-in attempts to delete an existing wireless or wired GPO for a GPO, the following protocol sequence MUST be generated:

  1. Identify an existing wireless or wired policy from the Active Directory that is to be deleted. This can be done using the steps mentioned in section 3.1.5.1

  2. For this policy, identify the following values.

    Parameter

    Value

    policyName

    The name of the policy object.

  3. The administrative-side plug-in MUST delete the existing object in the Active Directory that contains the wireless or wired policy settings. It MUST send an LDAP delRequest, as specified in [RFC2251], with the following parameters.

     Parameter

    Value

    Entry

    For BLOB-based wireless policy:

    • It MUST be CN=policyName, CN=Wireless, CN=Windows, CN=Microsoft, Scoped GPO DN.

    • For XML-based wireless policy:

    • It MUST be CN=policyName, CN=IEEE80211, CN=Windows, CN=Microsoft, Scoped GPO DN.

    For wired policy:

    • It MUST be CN=policyName, CN=IEEE8023, CN=Windows, CN=Microsoft, Scoped GPO DN.

    • Where policyName is the name of the policy identified in step 2.

    This message deletes the existing Active Directory object of the corresponding policy.

    If the resultCode field of the delResponse message is non-zero, the delete operation failed. In this case, this protocol sequence MUST proceed to step 5 (LDAP UnbindRequest).

  4. The administrative tool MUST invoke the Group Policy Extension Update task defined in [MS-GPOL] section 3.3.4.4.

  5. An LDAP UnbindRequest is be made by the plug-in that corresponds to the previous LDAP BindRequest to close the connection, unless the plug-in will reuse the ADConnection Handle (section 3.1.1.1) for future requests.