ldapsearch question
Dan Nelson
dnelson at allantgroup.com
Sun Jan 18 20:32:54 PST 2009
In the last episode (Jan 18), Jay Hall said:
> I am running the following against an Active Directory server.
>
> ldapsearch -D "cn=admin_user,cn=users,dc=xx,dc=com" -x -w "password" -
> h 10.129.10.42 -p 3268 -b 'dc=abc,dc=com' -s sub
> '(!(objectclass=computer))' '(!(mail=*))' dn mail
>
> I am trying to return only objects for which the mail attribute is
> defined. I think my search is incorrect, and I am searching for the
> mail attribute being null.
Your search filter is currently (!(objectclass=computer)) , and you
are asking for the attributes (!(mail=*)), dn, and mail to be returned.
I think you want this: '(&(!(objectclass=computer))(mail=*))' i.e.
(objectclass isn't computer) AND (mail attribute is present).
http://tools.ietf.org/html/rfc2254
--
Dan Nelson
dnelson at allantgroup.com
More information about the freebsd-questions
mailing list