memberOf中的LDAP搜索通配符 [英] LDAP Search Wildcards in memberOf
问题描述
我们有一个LDAP,其中包含许多遵循此模式的组:
We have an LDAP with a number of groups that follow this pattern:
Acme-MyApp-ABC-Admin
Acme-MyApp-ABC-Bottlewasher
Acme-MyApp-ABC-Cook
Acme-MyApp-DEF-Admin
Acme-MyApp-DEF-Bottlewasher
Acme-MyApp-DEF-Cook
等重复了很多次.
(&(objectClass=person)(memberOf=cn=Acme-MyApp-ABC-Admin,ou=Groups,dc=acme,dc=com))
正确返回Acme-MyApp-ABC-Admin组的成员.我们想找到所有Admin组的成员.
correctly returns members of the Acme-MyApp-ABC-Admin group. We'd like to find members of all of the Admin groups.
(&(objectClass=person)(memberOf=cn=*-Admin,ou=Groups,dc=acme,dc=com))
是否可以在DN中放入通配符?
Is it possible to put a wildcard within a DN?
推荐答案
通常,不支持对DN的语法属性进行通配符搜索.
Generally, Wildcard searches on DN's syntax attributes are not supported.
某些LDAP服务器实现可能支持它们.您的问题被标记为OpenLDAP,但搜索过滤器似乎更像是AD实施.
Some LDAP server implementation may support them. You question is tagged as OpenLDAP but the search filter appears to be more like an AD implementation.
I did find "Question about using an LDAP filter to get memberOf from an AD Group" on TechNet stating, ".. that wildcards are no allowed." (I am assuming he met NOT vs no)
-吉姆
这篇关于memberOf中的LDAP搜索通配符的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
