在尝试从LDAP的OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local获取所有用户时遇到问题。正确的搜索应设置为基础DN为该OU,并查找具有objectClass的对象。在PHP中,这将涉及绑定到LDAP服务器,然后执行搜索,例如:ldap_search($ldapconn, $dn, $filter, $justthese),其中dn是OU路径,$filter为'(objectClass=user)'。"
111404755,9314127,传输介质与信道:概念解析,"['网络技术', '数据传输']
I am having trouble with an LDAP Search Filter. What I am needing to retrieve is all the users of a specific LDAP group that is OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local
My search is:
(&(objectCategory=user)(OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local))
Currently it is returning no results. What am I missing?
解决方案
You must do two things
Set the base of the search OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local
Search for the objects with the objectClass.
Using PHP, the search would look like this (based on this PHP sample):
//You must bind, first
// using ldap bind
$ldaprdn = 'yourdomain\nic_hubbard'; // ldap rdn or dn
$ldappass = 'password'; // associated password
// connect to ldap server
$ldapconn = ldap_connect("yourad.test.local")
or die("Could not connect to LDAP server.");
if ($ldapconn) {
// binding to ldap server
$ldapbind = ldap_bind($ldapconn, $ldaprdn, $ldappass);
$dn = "OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local";
$filter="(objectClass=user)";
$justthese = array("cn", "sn", "givenname", "mail");
$sr=ldap_search($ldapconn, $dn, $filter, $justthese);
$info = ldap_get_entries($ldapconn, $sr);
echo $info["count"]." entries returned\n";
}
?>
You can test on the command line with this (exact options varies, this works with recent openldap's client tools) :
ldapsearch -H ldap://yourad.test.local -x -D "yourdomain\nic_hubbard" -W -b "OU=Staff,OU=Users,OU=Accounts,DC=test,DC=local" -s sub "(objectClass=user)"
扫一扫
1791
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
