Java LDAP query to retrieve all users in an organisational unit
Question
I cannot find a way to get users from LDAP by specific organisational unit. Only able to get all users with:
List users = (List<User>) ldapTemplate.search(base, "(&(objectClass=person))", new UserAttributesMapper());
If I add to query something like (memberOf=OU=Users) I get empty results. What is the correct query for this kind of action?
3 answers
solution1
0 2014-05-30 14:42:58
Probably you have wrong LDAP path. Download**LDAP Browser** and check the path under which your users are; then use this exact path in your query.
solution2
0 2014-05-30 15:33:29
If the OU is a sub tree, use that as the base of the search. If it's an attribute, search on
(&(objectClass=person)(ou=Users))
Your 'memberOf' search should also work if the memberOf attribute is maintained and up to date, but you need to specify the full DN of Users, not juste RDN.
solution3
0 2014-05-31 08:31:48
Actually, you can only use the (ou=Users) filter, if the ou attribute is part of the person entries (which is hardly the case).
You could use ou=Users,dc=Company,dc=com as the base.
Otherwise, LDAP standard defines a way to match an assertion as part of the Distinguished Name, but unfortunately not all LDAP servers support that. OpenDJ, Sun Directory Server and RH DS do support it, probably some other ones. The filter you should use is the following:
(&(objectclass=person)(ou:dn:=users))
Regards,
Ludovic.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.