Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

DN Component filter in ldap sychronization

wingtse
Champ in-the-making
Champ in-the-making

‎12-07-2009 04:59 PM

Is DN Component filter not supported on 3.2 for personQuery?

I wanted basically only import user who is under the ou "User Accounts"
When i do this, it didn't return any user at all.
ldap.synchronization.personQuery=(&(objectclass\=user)(ou\:dn\:\=User Accounts))

Anyone know what could be wrong?

thanks
-Wing
Labels:
0 Kudos
8 REPLIES 8

dward
Champ on-the-rise
Champ on-the-rise

‎12-07-2009 05:17 PM

Try

ldap.synchronization.userSearchBase=ou=User Accounts,dc=company,dc=com
0 Kudos

wingtse
Champ in-the-making
Champ in-the-making

‎12-07-2009 05:55 PM

I can't

I have to keep the
ldap.synchronization.userSearchBase=ou=Departments,dc=company,dc=com

Because the ou "User Accounts" is other other ou….
I have a hierarchy like following:

ouSmiley Very Happyepartments      
   ouSmiley Very Happyepartment1
      ou:User Accounts
      ouSmiley Frustratedystem Accounts (I need to filter this out)
   ouSmiley Very Happyepartment2
      ou:User Accounts
      ouSmiley Frustratedystem Accounts (I need to filter this out)
   ouSmiley Very Happyepartment3
      ou:User Accounts
      ouSmiley Frustratedystem Accounts (I need to filter this out)
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎12-08-2009 04:53 AM

In that case you need

ldap.synchronization.userSearchBase=ou=Departments,dc=company,dc=com
ldap.authentication.userNameFormat=# Keep this blank to allow dynamic DN resolution under multiple OUs
ldap.synchronization.personQuery=(&(objectclass\=inetOrgPerson)(ou\=User Accounts))
ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(ou\=User Accounts)(!(modifyTimestamp<\={0})))

Make sure you are using release 3.2r2 or later, which supports the dynamic DN resolution (DNs are resolved from a search rather than userNameFormat)
0 Kudos

wingtse
Champ in-the-making
Champ in-the-making

‎12-08-2009 10:25 AM

It doesn't work, we have 3.2 (r 2384)
Is this how we suppose to search for dn component in Alfresco (ou\=User Accounts)?
Because i LDAP the search should be (ou\:dn\:\=User Accounts)


thanks
-Wing
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎12-08-2009 10:29 AM

This won't work in v3.2. And yes that is the correct LDAP syntax.
0 Kudos

wingtse
Champ in-the-making
Champ in-the-making

‎12-08-2009 10:35 AM

Will this also be working on the coming 3.2 enterprise release? 
And when will the 3.2 enterprise going to be out?

-thanks
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎12-08-2009 10:58 AM

Yes it will. I can't answer the other question but think it will be 'imminent'.
0 Kudos

wingtse
Champ in-the-making
Champ in-the-making

‎12-23-2009 12:35 PM

we just installed 3.2E and the the dynamic DN resolution using ldap.synchronization.personQuery=(&(objectclass\=inetOrgPerson)(ou\=User Accounts)) still doesn't work
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC