Home

Results 1 to 4 of 4

Thread: LDAP Search Filter - Excluding Groups Issue

Threaded View

  1. #1
    Join Date
    May 2014
    Posts
    4

    Question LDAP Search Filter - Excluding Groups Issue

    Hi All

    Using Filr 2.0 with all 4 patches to date.

    I have an AD with a bunch of users, in a bunch of OUs (let's pretend the OUs are called A, B, C). In each OU, there are a bunch of users and groups. The groups are called (in their respective OUs): A-Filr-Users, B-Filr-Users, C-Filr-Users. Each group contains users only from their OU. It's these users I want to import into Filr. The users must only have visibility of users within their groups.

    Easy enough you think (what with the Limit User Visibility function), but the users are all in a couple of common groups outside of their OU structure (Domain Users is one, for example). This is making limiting visibility impossible for me at the moment, as it seems that regardless, Filr is enumerating the groups outside of the OUs and incorporating them - and it knows about their common membership.

    Ideally, I'd like to either restrict the LDAP import to just the users in, and the Filr-related groups (A-Filr-Users, B-Filr-Users, C-Filr-Users), or exclude the common groups from import.

    Current filters are (an example):

    Base DN for both: ou=A,DC=domain,DC=local
    User Filter: (&(objectClass=Person)(memberOf=CN=A-Filr-Users,OU=A,DC=domain,DC=local))
    Group Filter: (|(objectClass=group)(objectClass=groupOfNames)(ob jectClass=groupOfUniqueNames))

    Could anyone please help with this?

    Many thanks, James
    Last edited by james_mcmillan; 30-Aug-2016 at 06:57 PM. Reason: Typo

Similar Threads

  1. 7001818: Teaming LDAP search on groups returns extra objects
    By forumsadmin in forum Technical Information Documents (TIDs)
    Replies: 0
    Last Post: 05-Jan-2011, 07:10 AM
  2. 7001818: Teaming LDAP search on groups returns extra objects
    By forumsadmin in forum Technical Information Documents (TIDs)
    Replies: 0
    Last Post: 21-Oct-2009, 06:10 AM
  3. LDAP search for filter with single quote
    By skanda in in forum DEVELOPERS: LDAP
    Replies: 4
    Last Post: 28-Aug-2009, 12:43 AM
  4. LDAP search issue...
    By DWeuve in forum GW8: Clients
    Replies: 1
    Last Post: 08-Apr-2009, 05:41 PM
  5. Excluding workstations from groups
    By jwall@mail.rrdsb.com in forum ZDM6: Install-Setup
    Replies: 1
    Last Post: 14-Jun-2005, 09:33 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •