Any chance to get the list of the groups by uid? Not dn? WBR, Maxim (from mobile, sorry for the typos) On Aug 5, 2015 21:56, "Michael Wuttke" <[email protected]> wrote:
> Hi, > > the following query gives me only a list of my groups: > ldapsearch -H "ldaps://servername:636/" -D "mycompany\mwuttke" -b > "ou=Accounts,dc=mycompany,dc=de" -W "(uid=mwuttke)" -LLL -y ~/.pw memberof > dn: CN=Michael Wuttke,OU=Employee,OU=Accounts,DC=mycompany,DC=de > and so on ... > > Thanks, > Michael > > Am 05.08.2015 um 17:43 schrieb Maxim Solodovnik: > >> Any member? Or currently logged in member? >> >> WBR, Maxim >> (from mobile, sorry for the typos) >> >> On Aug 5, 2015 20:59, "Michael Wuttke" >> <[email protected] >> <mailto:[email protected]>> wrote: >> >> Hello Maxim, >> >> with this ldap search query I will get the groups of an AD member: >> ldapsearch -H "PROTOKOLL://SERVER:PORT/" -D "DOMAIN\ACCOUNT" -b >> "SEARCHBASE" -W "FILTER" (-LLL) memberof >> >> Am 05.08.2015 um 16:00 schrieb Michael Wuttke: >> >> Hello Maxim, >> >> sorry but we use M$ AD and it returns nothing or only errors >> with this >> query. ;-( >> >> Greetings, >> Michael >> >> Am 05.08.2015 um 15:18 schrieb Maxim Solodovnik: >> >> Hello Michael, >> >> Thanks for your reply >> I need query to get all groups of user with some uid. >> >> so I get uid for for the user: for ex. "solomax" >> I need to get all groups this user is part of. >> >> On my test LDAP server this query: >> (&(memberUid=test1)(objectClass=posixGroup)) returns DNs of >> all groups >> for given UID >> >> >> >> On Wed, Aug 5, 2015 at 7:11 PM, Michael Wuttke >> <[email protected] >> <mailto:[email protected]> >> <mailto:[email protected] >> <mailto:[email protected]>>> wrote: >> >> Hello Maxim, >> >> I don't know how to use the ldap_search for your query. >> >> But we use owncloud. Here are our LDAP queries we use >> for owncloud: >> >> the ldap query for users: >> (&(|(objectclass=person)) >> >> >> (|(|(memberof=CN=Owncloud-admins,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz0)) >> >> >> >> (|(memberof=CN=Students,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz1)) >> >> >> >> (|(memberof=CN=Employee,OU=Global,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz2)) >> >> >> >> (|(memberof=CN=Academics,OU=Global,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz3)) >> >> )) >> >> the ldap query for login attributes: >> (&(&(|(objectclass=person)) >> >> >> (|(|(memberof=CN=Owncloud-admins,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz0)) >> >> >> >> (|(memberof=CN=Students,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz1)) >> >> >> >> (|(memberof=CN=Employee,OU=Global,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz2)) >> >> >> >> (|(memberof=CN=Academics,OU=Global,OU=Groups,DC=mycompany,DC=de)(primaryGroupID=xyz03)) >> >> (|(sAMAccountName=%uid))) >> >> and the ldap query for groups: >> >> >> (&(|(objectclass=group))(|(cn=Employee)(cn=Students)(cn=Owncloud-admins)(cn=Academics))) >> >> >> Here is the docu how to configure ldap auth: >> >> >> https://doc.owncloud.org/server/8.1/admin_manual/configuration_user/user_auth_ldap.html >> >> >> and the cowncloud code repo the ldap auth app: >> https://github.com/owncloud/core/tree/master/apps/user_ldap >> >> Maybe it helps you? >> >> Thanks & Greetings, >> Michael >> >> Am 05.08.2015 um 14:29 schrieb Maxim Solodovnik: >> >> ups, sorry wrong keyboard :((( >> >> ---- Can anyone with access to AD check if this >> query works in >> AD, and >> сщккусе ше ащк ФВ ша тще, >> ++++ Can anyone with access to AD check if this >> query works in >> AD, and >> correct it for AD if not, >> >> On Wed, Aug 5, 2015 at 6:28 PM, Maxim Solodovnik >> <[email protected] <mailto:[email protected]> >> <mailto:[email protected] <mailto:[email protected]>> >> <mailto:[email protected] >> <mailto:[email protected]> <mailto:[email protected] >> <mailto:[email protected]>>>> >> wrote: >> >> Hello All, >> >> I'm currently trying to implement >> https://issues.apache.org/jira/browse/OPENMEETINGS-1214 >> I was able to find query to get all groups in >> LDAP: >> >> The following query seems to be able to list >> all groups for >> the user >> with "uid == test1": >> (&(memberUid=test1)(objectClass=posixGroup)) >> >> Can anyone with access to AD check if this >> query works in >> AD, and >> сщккусе ше ащк ФВ ша тще, >> >> Thanks in advance! >> >> -- >> WBR >> Maxim aka solomax >> >
