Avatar of PSGITech
PSGITech
 asked on

LDAP Query

I am in the process of setting up a SSO with SAML, its asking me for an LDAP Attribute for a LDAP query that can query my AD for account name, any idea what that would be?
Active DirectoryWindows Server 2003Windows Server 2008

Avatar of undefined
Last Comment
Premkumar Yogeswaran

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Mike Kline

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Vipin Vasudevan

(&(objectCategory=person)(objectclass=User)(samaccountname=*)) will query the user account with samaccount name

YOu can user CN,UPN or mail for querying users..
mwheeler1982

You'll probably need to configure settings similar to this:
Search Scope: subtree
Search base: dc=yourdomain,dc=com
Depending on how you tell it what query to use, it may need something like this: (&(samaccountname=%s)(objectClass=user))

Use samaccountname if you want the users to use their username, use userprincipalname if you want them to use (what is usually) their email address.
Leon Fester

Post a screenshot of the screen that's asking you the question.
Would be easier to find the correct answer.

Or maybe this link will help:
http://en.wikipedia.org/wiki/SAML_2.0
Your help has saved me hundreds of hours of internet surfing.
fblack61
Premkumar Yogeswaran

For LDAP search in SAML refer this link:

http://lists.forgerock.org/pipermail/openam/2011-December/004202.html

Hope this helps,

Regards,
Prem