Kirill Kovalenko wrote:
Hello,
The ADS 0.9.1 does not support fetching all user attributes via "*" (all
user attributes).
Here is an extract of RFC2251 (section 4.5.1):
- attributes: A list of the attributes to be returned from each entry
which matches the search filter. There are two special values which
may be used: an empty list with no attributes, and the attribute
description string "*". Both of these signify that all user
attributes are to be returned. (The "*" allows the client to
request all user attributes in addition to specific operational
attributes).
Should I open a bug?
Yeah this is a pretty bad bug to have. Sorry about that we need to get
right on a long list of bugs that have been collecting up as we have
added new features and refactored the server.
FYI:
For those of you who use Softerra LDAP Administrator and want be able to see
both user and operational attributes you need open advanced profile
properties (Profiles Properties->LDAP Settings->Advances->Miscellaneous) and
turn on the "Force compatibility with the LDAPv2." checkbox.
I had not but this gives me the opportunity to start playing with it.
Thanks,
Alex
