LDAP filtering string syntax
We have an application which can sync users VIA LDAP
Current string below sync all objects in my domain.
Java.naming.provider.url=ldap://192.168.2.8:389/dc=mydomain,dc=com
I am looking for an exact syntax to:
- Only sync user object ( do not sync groups, computers, servers, users associated with public folders etc)
- Only sync some OU. Like city1 OU instead of full domain.
Mydomain.com\city1
ASKER
Robert,
they keyword here is an exact syntax. I didn't ask for a google link
I am looking for exact syntax for so what will be an exact syntax for OU city1 in my example/
Mydomain.com\city1
Java.naming.provider.url=ldap://192.168.2.8:389/dc=mydomain,dc=com
they keyword here is an exact syntax. I didn't ask for a google link
I am looking for exact syntax for so what will be an exact syntax for OU city1 in my example/
Mydomain.com\city1
Java.naming.provider.url=ldap://192.168.2.8:389/dc=mydomain,dc=com
If the OU was named City1 and was in the root of your structure then the path would be
Java.naming.provider.url=ldap://192.168.2.8:389/ou=City1,dc=mydomain,dc=com
That is still just a connection string not a filter though.
Java.naming.provider.url=ldap://192.168.2.8:389/ou=City1,dc=mydomain,dc=com
That is still just a connection string not a filter though.
ASKER
great and if i have users below city one what will be the path to users?
maindomain\city1\users?
maindomain\city1\users?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Robert,
thank you
it worked.
thank you
it worked.
If the only thing it has is the ability to point to the URL (as you have in the above) you could probably only really limit it by pointing it to a specific OU.
However if it does allow for the full filtering syntax you may be able to do more.
Here is a link to the basic AD documentation on LDAP filters.
Active Directory: LDAP Syntax Filters - TechNet Articles - United States (English) - TechNet Wiki (microsoft.com)