Reputation: 57
ldap search for users, defined in a security group
I've attached a picture about my LDAP structure (LDAP structure), where I have two users in one group, along with a security group definition. I also have uses, belonging to this security group, but situated in other parts of the AD tree. What is the best strategy to find all users belonging to this security group?
Upvotes: 2
Views: 5527
Answers (1)
Reputation: 11056
Assuming you are ONLY using Microsoft Active Directory and the interest is to use an LDAP Search to find all "USERS" belonging to to a Security Group
to retrieve only users that are members:
(&(objectClass=user)(memberof:1.2.840.113556.1.4.1941:=CN=GroupOne,OU=Security Groups,OU=Groups,DC=YOURDOMAIN,DC=NET)
Direct members of a Security Groups
(memberOf=CN=Admin,OU=Security,DC=DOM,DC=NT)
Resolves all members (including nested) Security Groups (requires at least Windows 2003 SP2)
(memberOf:1.2.840.113556.1.4.1941:=CN=GroupOne,OU=Security Groups,OU=Groups,DC=YOURDOMAIN,DC=NET)
We have several more Microsoft Active Directory LDAP Queries for Groups
Upvotes: 2
Related Questions
- LDAP Query to check if user exists in a group or subgroup
- Find LDAP user in nested group through Java
- Java LDAP - Determine if user in a given group?
- ldap search in java - finding all groups with a specific user in it
- LDAP: Get list of users in a specific group
- Find user's member of groups in Microsoft AD inside Domain Users security group
- How to check if a user is in an LDAP group
- LDAP Searching two groups
- Searching user in LDAP
- LDAP Java - Search for group membership across trusted domains