LDAP syntax / semantics: filter versus base DN?

Question

LDAP syntax / semantics: filter versus base DN?

This is probably pretty stupid, but I'm still green for LDAP. Therefore, I hope someone can lend me a hand.

I use Apache Directory Studio to do my searches, and I'm confused when I have to use a filter or when I have to split my filter into two, using one part as a filter and the other as my search base,

Here is an example where I am trying to filter a group.

Filter: CN=JohnTestGroup,OU=TECH,DC=lab,DC=ing
Base:   DC=lab,DC=ing

This yielded zero results. I realized that maybe I'm redundant, because part of the database is in the filter, so I got rid of this part of the filter.

Filter: CN=JohnTestGroup,OU=TECH
Base:   DC=lab,DC=ing

It brought nothing. So I tried this:

Filter: CN=JohnTestGroup
Base:   OU=TECH,DC=lab,DC=ing

OU Base. , , . - , ?

, , /, , - , .

+3

syntax semantics filtering ldap ldap-query

John 04 . '10 21:53

2

Scopes : http://www.idevelopment.info/data/LDAP/LDAP_Resources/SEARCH_Setting_the_SCOPE_Parameter.shtml

SUBTREE (2, 3), 1 ,

+1

seriyPS 04 . '10 22:31

geoffc · Accepted Answer · 2010-11-05T12:31:37+0000

, , . = .

(objectclass= iNetOrgPerson) .

, DN, , CN, (CN = JohnTestGroup) , , (mail = John@mail.net).

LDAP, , seriyPS / , - SCOPE. , . . , , .

.

, DN, ENTRY DN.

LDAP syntax / semantics: filter versus base DN?

More articles: