NetAdmin2436
asked on
Active Directory Search Base
Hey experts-
Quick question....I'm trying to figure out and understand my active directory. What is my cn= on my Domain Controller? All of my users are under MyBusiness/Users/SBSUsers. Would it just be 'cn=SBSUsers'? or would it be something like 'cn=MyBusiness/Users/SBSUs ers'
cn=?,dc=server,dc=com
My active directory looks like below
domain.com
| Builtin
| computers
| domain controllers
| ForeignSecurityPrincipals
| MyBusiness
| Computers
| Distribution Groups
| Folders
| Groups
| Security Groups
| Users
| SBSUsers
| PastUsers
| Resources
| Users
Thanks in advance
Quick question....I'm trying to figure out and understand my active directory. What is my cn= on my Domain Controller? All of my users are under MyBusiness/Users/SBSUsers.
cn=?,dc=server,dc=com
My active directory looks like below
domain.com
| Builtin
| computers
| domain controllers
| ForeignSecurityPrincipals
| MyBusiness
| Computers
| Distribution Groups
| Folders
| Groups
| Security Groups
| Users
| SBSUsers
| PastUsers
| Resources
| Users
Thanks in advance
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Are you using Fireware Pro with this?
I've only set up one of these things, and I don't remember liking it too much... compared to just running ISA Server on the SBS box.
I'd post a pointer question over in https://www.experts-exchange.com/Networking/Microsoft_Network/ to have those guys give this a looksee.
Howto post pointers: https://www.experts-exchange.com/help.jsp#hi262
Jeff
TechSoEasy
I've only set up one of these things, and I don't remember liking it too much... compared to just running ISA Server on the SBS box.
I'd post a pointer question over in https://www.experts-exchange.com/Networking/Microsoft_Network/ to have those guys give this a looksee.
Howto post pointers: https://www.experts-exchange.com/help.jsp#hi262
Jeff
TechSoEasy
ASKER
Yeah, fireware pro v8.2. I'll try a few things next week, and point a question if i still can't figure it out.
Thanks for the help
Thanks for the help
ASKER
Cool, I think i got it. I found a good explanation document on watchguards website/forums. Yeah Basically your right without the <user name> since it does a group string search. CN=SBSUsers,OU=Users,OU=My Business,D C=<DomainN ame>,DC=lo cal
https://www.watchguard.com/support/Fireware_Howto/HowTo_FindADSearchBase.pdf
https://www.watchguard.com/support/Fireware_Howto/HowTo_FindADSearchBase.pdf
ASKER
I actually have an X500 firewall that i'm trying to get to authenticate to my DC. So that's why i'm wondering what i should put in the search base on my X500 or any third party device/application.
cn=users,dc=server,dc=com is the example in the x500 manual, but i'm wondering if i need to specify the level of OU's. I think you may have answered it, but i haven't tried it yet. Early next week I should have some time and i'll give that a shot and put CN=SBSUsers,OU=Users,OU=My
There's also a 'Group String:memberOf ' setting, but i think that is correct to leave at it is.