Solved

Users in Nested Groups LDAP Query Help

Posted on 2013-01-11
3
1,543 Views
Last Modified: 2013-01-16
My LDAP Query will not run. Its purpose is to enumerate users of groups and users in groups nested below target group.

(&((objectCategory=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xx,DC=xxx,DC=xx,DC=xx,DC=xx)))

Can someone tell me why this is not working?

Error: The query filter "(&(&(&((objectCategory=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xx,DC=xxx,DC=xx,DC=xx,DC=xx)))))" is not a valid query string.
0
Comment
Question by:elv1s
  • 2
3 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 38768702
Is this in ADUC, I have some other ways to do it here

http://adisfun.blogspot.com/2009/06/find-group-members.html

also use (objectcategory=person)(objectclass=user)  > for the user portion.

Thanks

Mike
0
 

Author Comment

by:elv1s
ID: 38772012
Yes this is in ADUC. I would like to keep the LDAP filter in ADUC. I am sure this is possible. Help is appreciated.
0
 

Author Comment

by:elv1s
ID: 38772038
fixed with info from mkline71

(&(objectcategory=person)(objectclass=user)(memberOf:1.2.840.113556.1.4.1941:=CN=xxx,OU=xxx,OU=xx,OU=xxx,DC=xxx,DC=xxx,DC=xxx,DC=xxx))
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There's a better way to communicate time sensitive or critical info.
Why pager replacement is still an issue OnPage has what some might call a “hate/hate” relationship with pagers. Not much room for love. As we see it, pagers are an antiquated bit of technology. Pagers are dinosaurs which, like most dinosaurs, sho…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question