R.: When will this be added to Adfind (or is it already)?
Joe K.
- Original Message - From: Dmitri Gavrilov
[EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Monday, January 22, 2007 9:07 AM
Subject: RE: [ActiveDir] Who Am I request
ADAM (starting from ADAM 1.0) and AD
Cool, thanks Lee. It works. :)
Joe
- Original Message -
From: Lee Flight [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Tuesday, January 23, 2007 5:13 AM
Subject: Re: [ActiveDir] Who Am I request
Using ldp.exe;
rootDSE query for supportedExtension will you the OID:
4
Hello Dmitri,
thanks for your reply. The server I connect to is pre-LH (Windows 2003 I
think), which doesn't support WhoAmI.
You suggested that I read tokenGroups, but I have no user object to read it
from. All I have generic connection to a LDAP server (I need to use the
OpenLDAP library for
11:26 AM
Subject: Re: [ActiveDir] Who Am I request
Hello Dmitri,
thanks for your reply. The server I connect to is pre-LH (Windows 2003 I
think), which doesn't support WhoAmI.
You suggested that I read tokenGroups, but I have no user object to read
it
from. All I have generic connection to a LDAP
: Tuesday, January 23, 2007 11:26 AM
Subject: Re: [ActiveDir] Who Am I request
Hello Dmitri,
thanks for your reply. The server I connect to is pre-LH (Windows 2003 I
think), which doesn't support WhoAmI.
You suggested that I read tokenGroups, but I have no user object to read
it
from. All I have
such as the full DN, GUID or SID. I doubt that helps if
you are trying to use use OpenLDAP though. :)
Joe K.
- Original Message -
From: Alexandr Kara [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Tuesday, January 23, 2007 3:12 PM
Subject: Re: [ActiveDir] Who Am I request
Let's
such as the full DN, GUID or SID. I doubt that helps if
you are trying to use use OpenLDAP though. :)
Joe K.
- Original Message -
From: Alexandr Kara [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Tuesday, January 23, 2007 3:12 PM
Subject: Re: [ActiveDir] Who Am I request
Let's say
]
To: ActiveDir@mail.activedir.org
Sent: Tuesday, January 23, 2007 3:12 PM
Subject: Re: [ActiveDir] Who Am I request
Let's say I did a simple bind with user TestUser, but the user record is
actually located at CN=TestUserCN,OU=Users1,DC=company,DC=com and it can
(as far as I know) only
Thanks for clearing that up. I appreciate it.
Joe K.
- Original Message -
From: Eric Fleischman [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Tuesday, January 23, 2007 5:52 PM
Subject: RE: [ActiveDir] Who Am I request
You can do an x-domain simple bind within the forest
ADAM (starting from ADAM 1.0) and AD (starting from Longhorn) support
WhoAmI extended operation per RFC. In addition, they support
rootDSE/tokenGroups attribute, which is exactly what you need to check
self group membership.
If you have pre-LH AD, then what you can do is read tokenGroups off the
10 matches
Mail list logo
