grouper-users - Re: [grouper-users] Searching AD subject source by DN
Subject: Grouper Users - Open Discussion List
List archive
- From: IAM David Bantz <>
- To: Sam Erie <>,
- Subject: Re: [grouper-users] Searching AD subject source by DN
- Date: Mon, 25 Jun 2018 12:12:17 -0800
- Ironport-phdr: 9a23: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
(CN=dir_SW_OIT*) works as filter to find department groups in UA AD like
DN: CN=dir_SW_OIT_Identity_Access_Management,OU=SW,OU=OrganizationalDirectory,DC=ua,DC=ad,DC=alaska,DC=edu
and others
David Bantz
UA OIT IAM
On Mon, Jun 25, 2018 at 11:27 AM, Sam Erie <> wrote:
I couldn't find anything about this in the list archive, so please let me know if there is any known method for searching by distinguishedName.Which should not use a wildcard. So is it possible something extra is happening when TERM is swapped out for the actual searchValue?I am trying to resolve group subjects by their DN. I had everything set up and working correctly with sAMAccountName, but when I changed the id attribute to distinguishedName it stopped working. I can still search correctly by identifier (displayName) or general search (description), and when I findAll() using a wildcard it returns all subjects expected and their DN is correctly stored under id.I am thinking the problem is because in AD filtering by distinguishedName has to be exact, cannot use wildcards. The searchSubject filter I have set up in sources.xml looks like this:
(&(distinguishedName=TERM)(objectclass=group))
- [grouper-users] Searching AD subject source by DN, Sam Erie, 06/25/2018
- Re: [grouper-users] Searching AD subject source by DN, IAM David Bantz, 06/25/2018
- Re: [grouper-users] Searching AD subject source by DN, Sam Erie, 06/25/2018
- Re: [grouper-users] Searching AD subject source by DN, IAM David Bantz, 06/25/2018
Archive powered by MHonArc 2.6.19.