The characters are specified in the RFC because they have special significance in the filter itself. I.E. * means something to the query processor and in LDAP filters so you have to signify that you mean the actual asterisk character, not the special meaning normally attributes to * in a filter.
In a general state, a comma in a filter is fine, but a comma has special significance in a DN so you aren't doing it for the filter itself, but for the processing of the DN. joe -- O'Reilly Active Directory Fourth Edition - http://www.joeware.net/win/ad4e.htm -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Emmanuel Lecharny Sent: Thursday, September 03, 2009 12:57 PM To: [email protected] Subject: [ldap] Re: Allowable Characters Question No need to escape comas in filters. It's allowed. In fact, the only characters you need to escape are 0x00, '(', ')', '*' and escape (0x27). For any character above 0x7F, there is no problem. If you want to use one of the forbidden chars, just type \XX, where XX are the hex value of the escaped char. Everything is described in detail in RFC 4515 (http://www.rfc-editor.org/rfc/rfc4515.txt) -- -- cordialement, regards, Emmanuel Lécharny www.iktek.com directory.apache.org
