RE: [ActiveDir] Saved queries

[joe]

Completely concur. This is what Wook said as well but he gave me an angle to brag about adfind doing ASQ queries so I hit that instead on my response to his post. <thanks Wook!> :o)   While saved queries could have been implemented to do this (i.e. base level connection to a group object and dump the member attribute) it wasn't. The need, I would guess, was determined to not be there because you could look at the member attribute on the groups themselves. Of course the Saved Queries dialog gives more info but that would have been another code path to add to the saved queries logic. Ad indicated by Wook, instead of one query, it would have had to have been a query and then multiple queries for each individual DN or an ASQ query which would only work against K3 or better. You would have seen tremendous deltas in speed if you did the group member enumeration because of the sheer number of additional queries. For instance a group with 5000 members would have requires 5001 queries (again unless you used ASQ).     joe     -- O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm      From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian Desmond Sent: Monday, May 01, 2006 5:17 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Saved queries I still don’t understand what you want to do … you want to see the group membership of a particular group in the saved queries view? That’s not really the point of the feature … you’re trying to dump a multivalue attribute into that view rather than the results of a ldap search…   Thanks, Brian Desmond [EMAIL PROTECTED]   c - 312.731.3132     From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom Kern Sent: Monday, May 01, 2006 5:13 PM To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] Saved queries   Just wondering what the query would look like in "saved queries" and if its even possible to do it that way. I can do it by querying the memberof=groupi'mlookingfor an get a list of all users in that group.   Just wanted to know of i can do the reverse and query the member attrib of the group and get the users because it doesn't seem to work in "saved queries". this is just for my own personal knowldge. There is no "real" reason to do it this way and i know of 100 others that would get the same result.   Thanks   On 5/1/06, Grillenmeier, Guido <[EMAIL PROTECTED] > wrote: uh - not sure I understand your problem. Why don't you just look at the member attribute of a group?   From: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED]] On Behalf Of Tom Kern Sent: Montag, 1. Mai 2006 20:21 To: activedirectory Subject: [ActiveDir] Saved queries   what is the ldap syntax for querying for all the members a particular group has in the AD saved queries feature?   I can't seem to get it to work.     Thanks