info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
LDAP query to list users from Domain Local group
328 views
Skip to first unread message
prs
Jul 22, 2008, 12:22:16 PM7/22/08
to
I have a domain local group that has members from a trusted forest.
I'm trying the following query to list the members
I'm trying the following query to list the members
memberOf=CN=<domain_local_group>,OU=Sub-
Group,OU=Group,DC=NAME,DC=COMPANY,DC=COM
This query works fine for a Global group but does not work for Domain
Local group. Please advice.
Thanks,
Ram
Joe Kaplan
Jul 23, 2008, 11:14:38 AM7/23/08
to
Normally, users from a trusted forest will be represented by a foreign
security principal object, so the DN in the group's member attribute will
point to the FSP object that gets created when the user is added.
security principal object, so the DN in the group's member attribute will
point to the FSP object that gets created when the user is added.
I'd start by looking at the member attribute to see what the DN of the user
is.
It may also be the case that the member attribute contains the DN of a user
in a different domain in the forest. In that case, you'll need to search in
that domain to find them.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"prs" <seshan.ra...@gmail.com> wrote in message
news:114d2372-ceb6-4604...@26g2000hsk.googlegroups.com...
0 new messages