Andrew Findlay wrote:
> You could try using the extended search filter syntax:
>
> (dhcpOption:caseIgnoreSubstringsMatch:=boot*)
>
> See RFC4515 for more details. In practice you will probably want to create a
I tried and failed ... where did I mistake? :(
for original ldapns.schema
1. search works with filter: (authorizedService=mail@hh001.umidb)
(and without index it returns empty result)
# base with scope subtree
# filter: (authorizedService=mail@hh001.umidb)
# requesting: authorizedService uid
#
# mail@hh001.umidb, tafij.tafus, People, umidb
dn: authorizedService=mail@hh001.umidb,uid=tafij.tafus,ou=People,dc=umidb
uid: tafij.tafus@mail
authorizedService: mail@hh001.umidb
# tafij.tafus@hh001.umidb, mail@hh001.umidb, tafij.tafus, People, umidb
dn:
uid=tafij.tafus@hh001.umidb,authorizedService=mail@hh001.umidb,uid=tafij.t
afus,ou=People,dc=umidb
authorizedService: mail@hh001.umidb
uid: tafij.tafus@hh001.umidb
# search result
search: 2
result: 0 Success
2. search, though empty, but works with filter:
(authorizedService=m...@hh001.um*)
# base with scope subtree
# filter: (authorizedService=m...@hh001.um*)
# requesting: authorizedService uid
#
# search result
search: 2
result: 0 Success
3. search (expectedly) works with filter:
(authorizedService:caseIgnoreMatch:=mail@hh001.umidb)
# base with scope subtree
# filter: (authorizedService:caseIgnoreMatch:=mail@hh001.umidb)
# requesting: authorizedService uid
#
# mail@hh001.umidb, tafij.tafus, People, umidb
dn: authorizedService=mail@hh001.umidb,uid=tafij.tafus,ou=People,dc=umidb
uid: tafij.tafus@mail
authorizedService: mail@hh001.umidb
# tafij.tafus@hh001.umidb, mail@hh001.umidb, tafij.tafus, People, umidb
dn:
uid=tafij.tafus@hh001.umidb,authorizedService=mail@hh001.umidb,uid=tafij.t
afus,ou=People,dc=umidb
authorizedService: mail@hh001.umidb
uid: tafij.tafus@hh001.umidb
# search result
search: 2
result: 0 Success
4. search (unexpectedly) does not work at all with filter:
(authorizedService:caseIgnoreSubstringsMatch:=m...@hh001.umi*)
# base with scope subtree
# filter: (authorizedService:caseIgnoreSubstringsMatch:=m...@hh001.umi*)
# requesting: authorizedService uid
#
ldap_search_ext: Bad search filter (-7)
so ... I'm again where I was ... schema patch is the kludge but still no other
way to get that search :(
--
Zeus V. Panchenko jid:z...@im.ibs.dn.ua
IT Dpt., I.B.S. LLC GMT+2 (EET)