Chris Hayes
Reputation: 4037
How do you perform Active Directory search with partial SID?
Can you search for users with a partial SID?
get-aduser -ldapfilter "(objectSID=S-X-X-XX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-*)" -server YOURDOMAINNAME
Although my sample is PowerShell, I'm open to language agnostic answers
Upvotes: 0
Views: 853
Answers (1)
marabu
Reputation: 1196
No, the AD LDAP handler will not do a partial search on objectSID. You wouldn't even expect it if it didn't handle other attribute types with octet string syntax, like (objectGUID=\0c\9d\68\d9*). Equality match is possible though.
Upvotes: 1
Related Questions
- How do you search by DN in LDAP?
- How do I search LDAP for employees allowing partial dn or uo matches?
- Search AD only having SID
- Search for users in an AD via an LDS instance
- Searching Active Directory using Sid
- How to apply additional search query to LDAP
- Searching user in LDAP
- Active Directory Custom Search LDAP query
- Search Active Directory without using LDAP
- Search ActiveDirectory using full name in C#?