Solved

Users in Nested Groups LDAP Query Help

Posted on 2013-01-11
3
1,483 Views
Last Modified: 2013-01-16
My LDAP Query will not run. Its purpose is to enumerate users of groups and users in groups nested below target group.

(&((objectCategory=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xx,DC=xxx,DC=xx,DC=xx,DC=xx)))

Can someone tell me why this is not working?

Error: The query filter "(&(&(&((objectCategory=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xx,DC=xxx,DC=xx,DC=xx,DC=xx)))))" is not a valid query string.
0
Comment
Question by:elv1s
  • 2
3 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 38768702
Is this in ADUC, I have some other ways to do it here

http://adisfun.blogspot.com/2009/06/find-group-members.html

also use (objectcategory=person)(objectclass=user)  > for the user portion.

Thanks

Mike
0
 

Author Comment

by:elv1s
ID: 38772012
Yes this is in ADUC. I would like to keep the LDAP filter in ADUC. I am sure this is possible. Help is appreciated.
0
 

Author Comment

by:elv1s
ID: 38772038
fixed with info from mkline71

(&(objectcategory=person)(objectclass=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xxx,DC=xxx,DC=xxx,DC=xxx,DC=xxx))
0

Featured Post

Google Storage: Standard vs. Nearline vs. Coldline

Google Cloud Storage has a number of classes to choose from. Although there are a lot in common, they vary in price and usage terms. This post explains Google Cloud Storage classes and helps to understand which  one to choose.

Join & Write a Comment

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
Synchronize a new Active Directory domain with an existing Office 365 tenant
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now