LDAP Query - General

The General panel lets you define the terms of an LDAP query. You can define as many queries as you need.

Typically you set up two queries, one to identify specific groups in the LDAP hierarchy and another to identify the users in those groups.

For a general discussion and examples of how to form LDAP queries based on the information you provide in this panel, see LDAP query basics.

Field definitions

Field

Description

Name

Identifying name.

Description

Optional descriptive text.

Base Distinguished Name

The top level of the LDAP directory tree that you want to query. Identify that top level in terms of a distinguished name (DN).

Filter

The query you want to use
Typically, a filter for groups of users would be (objectClass=group). A typical filter for users would be (objectClass=user).

Attribute

A value that distinguishes the type of information the query is searching for.
Typically, if you are searching for groups of users, the attribute would be member. The attribute for individual users would be userPrincipalName.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*