ldap 嵌套组成员资格过滤器 [英] ldap nested group membership filter

问题描述

我尝试使用 LDAP 匹配规则，但无法使用 LDAP 匹配规则过滤器检索搜索条目.

I tried using LDAP matching rule but i am not able to retrieve search entries usind LDAP matching rule filter.

这就是我发送过滤器的方式:过滤器(&(objectclass=*)(memberof:1.2.840.113556.1.4.1941:=)(cn=gasaxena))

This is how i am sending the filter: filter (&(objectclass=*)(memberof:1.2.840.113556.1.4.1941:=)(cn=gasaxena))

我也将过滤器转储到 ldap 服务器上收到的 pcap 中，它看起来是这样的:过滤器:(&(&(objectclass=*)(memberof:1.2.840.113556.1.4.1941:=[NULL]))(cn=gasaxena))

I dumped the filter in pcap received on ldap server as well and this is how it looks like: filter: (&(&(objectclass=*)(memberof:1.2.840.113556.1.4.1941:=[NULL]))(cn=gasaxena))

如果我错过了什么，有人可以指出吗?服务器是AD

Can someone point out, if i have missed out anything? The server is AD

推荐答案

您应该对类似的组执行搜索:

You should perform the search against the group similar to:

(member:1.2.840.113556.1.4.1941:=CN=John Smith,DC=MyDomain,DC=NET)

不是用户的 memberOf.

Not memberOf on the user.

-吉姆

这篇关于ldap 嵌套组成员资格过滤器的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！