We have a hosted environment where multiple customers run on the same Exchange 2003 server.
Each customer is assigned a customer number (fx. 1234) and a country-code (fx. dk), which combined is used as a suffix in the userPrincipalName (username@1234.dk). Similarily the names of groups are also appended with the suffix (groupname@1234.dk).
Each customer has it's own Global Address List that displays Exchange users with userPrincipalName=*1234.dk
, so their Exchange Address list only displays the users from the particular customer (each GAL is assigned special permissions).
We can also create a seperate Address List for each customer, that shows the groups which has 1234.dk in the name (cn=*1234.dk).
But we would like to be able to construct an address list that shows BOTH users with userPrincipalName=*1234.dk
AND groups with cn=*1234.dk on the SAME address list.
Is this possible?
This custom query will show all Exchange users from business 1234.dk:
(&(&(&(& (mailnickname=*) (| (&(objectCategory=person)(
objectClas
s=user)(|(
homeMDB=*)
(msExchHom
eServerNam
e=*)))(obj
ectCategor
y=group) )))(objectCategory=user)(u
serPrincip
alName=*12
34.dk)))
This (custom query will show all Exchange groups from business 1234.dk:
(&(&(&(& (mailnickname=*) (| (&(objectCategory=person)(
objectClas
s=user)(|(
homeMDB=*)
(msExchHom
eServerNam
e=*)))(obj
ectCategor
y=group) )))(objectCategory=group)(
cn=*1234.d
k)))
But how can these be combined?
These shortened LDAP queries also work:
(userPrincipalName=*1234.d
k)
...and...
(cn=*1234.dk)
But can they be combined?
This DOESN'T work:
(userPrincipalName=*1234.d
k)|(cn=*12
34.dk)
(userPrincipalName=*1234.d
k)(cn=*123
4.dk)
(userPrincipalName=*1234.d
k)&(cn=*12
34.dk)
Any help on combining user and group LDAP queries will be hughly appreciated!!!
Thanks,
Nicolaj
Start Free Trial
