After an upgrade, this LDAP Query for AD Users suddenly fails:
(&(objectCategory=Person)(sAMAccountName=*)(!(sAMAccountName=SM*)(!(mail=*mailfdqn.eu*))))
with:
Test retrieve user : Failed org.springframework.ldap.InvalidSearchFilterException: Filter (!) cannot be followed by more than one filters; nested exception is javax.naming.directory.InvalidSearchFilterException: Filter (!) cannot be followed by more than one filters; remaining name 'ou=TheCompanyName,ou=Microsoft Exchange Hosted Organizations,dc=mshosting,dc=local'
After tests, it seems that negations/not's does not work, as in:
(&(objectCategory=Person)(sAMAccountName=*)(mail=*mailfdqn.dk)(!(sAMAccountName=SM*))
But this works:
(&(objectCategory=Person)(sAMAccountName=*)(mail=*mailfdqn.dk))
But I need the (!(sAMAccountName=SM*) to limit the amount of users sync'ed
Resolution in the newly created KB: https://confluence.atlassian.com/pages/viewpage.action?pageId=385909189
My solution became:
(&(objectCategory=Person)(sAMAccountName=*)(mail=*mailfdqn.dk)(!(sAMAccountName=SM*)))
Hi Norman,
You may try this filter:
(&(objectCategory=Person)(sAMAccountName=*)(!(|(sAMAccountName=SM*)(mail=*mailfdqn.eu*))))
Cheers
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.