/build/static/layout/Breadcrumb_cap_w.png

make an ldap label based on users in an OU in active directory

Hello ninjas.

I am trying to create an ldap label for users in an organizational unit in active directory.

There is no common group for all these users. they are from all over the place in the AD.

So I'm not sure of how to make a search filter for all these people to get them into an ldap label.


I'v tried in the ldap browser....... 

"Search base dn":  ............ I add the OU  "DN" to this field and get the OU and users in a tree.

Search filter : ............dunno what to add here


Update.:: All these users are disabled. So is there a way I can search by the  "useraccountcontrol"  field from

the AD users attributes which are all set to 514 ? 

This is the only common thread they all seem to have





0 Comments   [ + ] Show comments

Answers (1)

Answer Summary:
Posted by: IgorAngelini 2 years ago
Second Degree Blue Belt
0

Top Answer

Your question is kinda ambiguous. Are they spread out on the AD or are they on the same OU?

If they are in the same OU just use

Base DN:

OU=They are here,OU=Fake department,OU=USERS,DC=EXEMPLE,DC=COM

Search filter:

(sAMAccontName=*)


If they are all over the place and the only thing in common is the UserAccountControl

Base DN:

DC=EXAMPLE, DC=COM

Search Filter:

(|(|(UserAccountControl=514)(UserAccountControl=546))(UserAccountControl=66050))



Comments:
  • Thanks Igor. That helped. Cheers mate. - akmagnum 2 years ago

Don't be a Stranger!

Sign up today to participate, stay informed, earn points and establish a reputation for yourself!

Sign up! or login

Share

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ