ldap-query

What is the difference b/n memberOf attribute and groupMembership attribute when used in LDAP Authentication settings in Liferay? The users are imported successfully. The groups are also imported successfully. But the users are not assigned to the groups automatically. And when I changed the group variable from 'groupMembership' to 'memberOf', several users are not able to login to Liferay. What exactly are memberOf and groupMembership variables? memberOf is not a "variable", it is an attribute, or more accurately, it is a virtual attribute, or a dynamic attribute generated on the fly by some

What't the syntax for performing a case-insensitive match on a 'uid' attribute? If attribute definition matters then how would that be changed? In particular I am using ApacheDS for my LDAP store. (uid=miXedCaseUSer) will match a uid of mixedcaseuser. Accoriding to the OID Description for 0.9.2342.19200300.100.1.1 - Userid userId is defined to have EQUALITY MATCHING RULE caseIgnoreMatch Which means it is one of the attribute definitions that employ case insensitive matching by default. I think they are case insensitive by default, unless its a password attribute. 来源： https://stackoverflow.com

How do you do a query of an LDAP store by sAMAccountName and Domain? What is the "domain" property named in Active Directory or LDAP terms? This is what I have for the filter so far. I'd like to be able to add in the domain: (&(objectCategory=Person)(sAMAccountName=BTYNDALL)) First, modify your search filter to only look for users and not contacts: (&(objectCategory=person)(objectClass=user)(sAMAccountName=BTYNDALL)) You can enumerate all of the domains of a forest by connecting to the configuration partition and enumerating all the entries in the partitions container. Sorry I don't have any C

I'm trying to write an LDAP query which will discover if a user is a member of a group which matches a wildcard query and I'm trying to use the LDAP_MATCHING_RULE_IN_CHAIN OID to do this. I'm basically following example 2 on this page: http://support.microsoft.com/kb/914828 I've found that this method works well within a domain i.e. if user1 is in group1 and group1 is in group2 then I can write a query matching "*2" and the LDAP query will find the nested relationship and match the user against the group. However, now I've been asked to support relationships between domains in the same forest.

I have a search query in LDAP like this. What exactly does this query mean? ("CN=Dev-India,OU=Distribution Groups,DC=gp,DC=gl,DC=google,DC=com"); Burhan Khalid CN = Common Name OU = Organizational Unit DC = Domain Component These are all parts of the X.500 Directory Specification, which defines nodes in a LDAP directory. You can also read up on LDAP data Interchange Format ( LDIF ) , which is an alternate format. You read it from right to left, the right-most component is the root of the tree, and the left most component is the node (or leaf) you want to reach. Each = pair is a search criteria