Solved

Active Directory Group Search with Wildcard

Posted on 2011-03-04
6
1,054 Views
Last Modified: 2012-05-11
I am new to using the query abilities for Ad.  I want to search for a group in which I do not know the complete name.  I tried to search for *criteria* and %criteria%.  I also toyed with the advanced search without positive  results.  I would like to know where I would go to query for a group and what they syntax would be to do so using a partial group name.  A couple of links to some good resources would be nice as I am certain I will be expanding on this same query method in the near future.

Thanks for the help
0
Comment
Question by:Cystixs
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
6 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 35039197
If you were looking for a good link, this is one I like   http://www.selfadsi.org/ldap-filter.htm

If you want to do this natively you can use ADUC

(&(objectcategory=group)(name=*criteria*))

I can take a screen shot if that would be helpful.

Thanks

Mike
0
 

Accepted Solution

by:
Cystixs earned 0 total points
ID: 35039599
Well, I couldn't get the above to work (returned no results), but it did give me a foundation to find what would work.  Here is the search that I got to return the expected result.

(&(objectclass=group)(cn=*criteria*))

It appears cn(common name) is the field I needed to search on.  This makes me wonder what the name field is or if it is a valid field for the 'group' object.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 35039659
That is odd, I just used name and samaccountname and it worked (see screenshots)

query-criteria1.jpg
query-criteria2.jpg
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 35184601
That is odd because the examples/screenshot shows it does work.  I think you should pass some points along as it did help you.

Thanks

Mike
0
 

Expert Comment

by:South Mod
ID: 35225173
All,
 
Following an 'Objection' by mkline71 (at http://www.experts-exchange.com/Q_26901829.html) to the intended closure of this question, it has been reviewed by at least one Moderator and is being closed as recommended by the Expert.
 
At this point I am going to re-start the auto-close procedure.
 
Thank you,
 
SouthMod
Community Support Moderator
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question