In general I tend to recommend people not use display names for their AD users anyway. There is no real point in it other than looking pretty for admins. The users aren't going to see it and it is just a source of uniqueness collisions etc. The best general option I have seen is to use the sAMAccountName or the UPN for the user's RDN. That way you get away from spaces and commas.
joe -- O'Reilly Active Directory Fourth Edition - http://www.joeware.net/win/ad4e.htm -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Sturgis, Grant Sent: Thursday, September 03, 2009 3:23 PM To: [email protected] Subject: [ldap] Re: Allowable Characters Question Thanks very much for the interesting discussion. It appears the \ is actually a part of the DN, as is the comma - according to the ldap results. I've found that if I escape the escape, and then escape the comma, it works. Unfortunately, I don't think we can modify the Oracle product to do this (or add the ASCII codes, which also work), so we will probably just remove the commas from all the cn (member=CN=Sturgis\\\, Grant,OU=Users-Active,DC=test,DC=loc) This electronic message transmission is a PRIVATE communication which contains information which may be confidential or privileged. The information is intended to be for the use of the individual or entity named above. If you are not the intended recipient, please be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. Please notify the sender of the delivery error by replying to this message, or notify us by telephone (877-633-2436, ext. 0), and then delete it from your system.
