The LDAP search query can return the user and. However, note that the computer has the objectclasscomputer, the user does not have that objectclass. For example, to query for all users whose accounts are enabled and whose mailboxes are in the SG2MB1 mailbox store, change homeMDBCNSG2MB2 to homeMDBCN. This query can now be used as a template. "`r`n"ĮDIT: Update code to for multiple matches.ĮDIT2: I figured out what was wrong with my ldap syntax and fixed it. The API used for user authorization may attempt to make the group membership query against the computer and not the user, preventing the actual user from getting their expected roles and accounts. This LDAP query will return all the users whose accounts are enabled and whose mailboxes are in the SG2MB2 mailbox store in the 2nd Storage Group.
oConn)ĬOM_Invoke(oComm, "Properties", "SearchScope", "2")ĬOM_Invoke(oComm, "Properties", "Page Size", "500")ĪdoExecute := COM_Invoke(oComm, "Execute")ĮxFields := COM_Invoke(adoExecute, "Fields")ĮxField := COM_Invoke(exFields, "Item", "cn") OComm := COM_CreateObject("ADODB.Command")ĬOM_Invoke(oComm, "ActiveConnection", "+". OConn := COM_CreateObject("ADODB.Connection") Query := " (&(objectclass=user)(objectcategory=person)(&(sn=" lastName ")(givenName=" firstName "))) distinguishedname,cn,employeeid,mail,givenname,sn,middlename,samaccountname,displayname,department,division,bhnadpmanagerid,manager subtree" Is this pretty accurate code wise? I want to make sure I'm spot on before I mark this solved. I had to change the query statement though to sql.the other way I had it would give me Commandtext errors. Here's what I came up with.and it got me the results. These LDAP search strings are good for Saved Queries in Windows Server 2003 AD Users and Computers, Query-based Distribution Groups and Exchange 2000/2003 Recipient Policies and Address Lists. Ok I got something that works, after working through this, I found my first mistake which was a mispelling of the word Command.
0 kommentar(er)
