6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"LDAP query for group in group\",\"text\":\"

Is there a good way to write an LDAP query that checks group memberships recursively? I have a custom attribute on a group that contains a list of objects (users and groups). My query works fine for users.

\\n\\n

Existing stripped down query

\\n\\n

(&(myList=cn=usr23453))\\n

\\n\\n

where myList is a multi-value DN.

\\n\\n

I apologize for use of incorrect terms and so on. AD and LDAP programming is kinda new to me.

\\n\\n

Thanks

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"Johan Karlsson\"},\"upvoteCount\":1,\"answerCount\":1,\"acceptedAnswer\":null}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","active-directory",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/active-directory/1","children":"active-directory"}]}],["$","span","ldap",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/ldap/1","children":"ldap"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/4cba8296f0c3ab87571ac0356ce693d4?s=256&d=identicon&r=PG&f=y&so-version=2","alt":"Johan Karlsson","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/829193/johan-karlsson","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Johan Karlsson"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",928]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"LDAP query for group in group"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

\n\n

Existing stripped down query

\n\n

(&(myList=cn=usr23453))\n

\n\n

where myList is a multi-value DN.

\n\n

I apologize for use of incorrect terms and so on. AD and LDAP programming is kinda new to me.

\n\n

Thanks

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",1]}],["$","p",null,{"children":["Views: ",384]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","19539627",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://i.sstatic.net/U0pg3.png?s=256","alt":"jwilleke","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/88122/jwilleke","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"jwilleke"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",10986]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

Not clear what you are tying to do, but, To Resolve nested security groups:

\n\n

(memberOf:1.2.840.113556.1.4.1941:=CN=user,CN=Users,DC=DOM,DC=NT)\n

\n\n

Where CN=user,CN=Users,DC=DOM,DC=NT is the Fully Distinguished name of a user entry.

\n\n

-jim

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",0]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","75240378",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/75240378","className":"text-blue-600 hover:underline","children":"LDAP query to get list of members in an AD group"}]}],["$","li","9890049",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/9890049","className":"text-blue-600 hover:underline","children":"Query to list all users of a certain group"}]}],["$","li","2825994",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/2825994","className":"text-blue-600 hover:underline","children":"ldap query for group members"}]}],["$","li","48361525",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/48361525","className":"text-blue-600 hover:underline","children":"LDAP query to retrieve members of a group"}]}],["$","li","36699793",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/36699793","className":"text-blue-600 hover:underline","children":"LDAP query to return all users in a group"}]}],["$","li","34643665",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/34643665","className":"text-blue-600 hover:underline","children":"Ldap Query for all members specific to a Group"}]}],["$","li","20545855",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/20545855","className":"text-blue-600 hover:underline","children":"Get groups of person"}]}],["$","li","1032351",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/1032351","className":"text-blue-600 hover:underline","children":"How to write LDAP query to test if user is member of a group?"}]}],["$","li","6050003",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/6050003","className":"text-blue-600 hover:underline","children":"How do I filter an LDAP query for groups containing a specific user?"}]}],["$","li","1322791",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/1322791","className":"text-blue-600 hover:underline","children":"C# ActiveDirectory LDAP Group Querying"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

LDAP query for group in group

Answers (1)

Related Questions