DSFW: No results for LDAP Query when OID is used instead of attribute name in the search filter

  • Document ID:7011513
  • Creation Date:12-Dec-2012
  • Modified Date:12-Dec-2012
    • Micro Focus Products:
      eDirectory
      Open Enterprise Server
    • SUSE Products:
      SUSE Linux Enterprise Server

Environment

Open Enterprise Server 11SP1 (OES11SP1)
Domain Services for Windows
DSfW

Situation

No results for LDAP Query when OID is used instead of attribute name in the search filter

Example of a ldapsearch quering on OID:
SASL_PATH=/opt/novell/xad/lib64/sasl2/ ldapsearch -Y GSSAPI -LLL -b "dc=dsfw-s1,dc=frdnbase,dc=com" -s sub '(&(&(|(1.3.6.1.4.13885.15.17=-1)(&(&(1.2.840.113556.1.4.782=group)(|(1.2.840.113556.1.4.750=8)(1.2.840.113556.1.4.750=-2147483646)))(2.5.4.3=dom*)))(!(objectCategory=computer)))(|(objectCategory=person)(objectCategory=group)))' dn grouptype

Resolution

Apply November 2012 Maintenance Patch

Additional Information

SASL_PATH=/opt/novell/xad/lib64/sasl2/ ldapsearch -Y GSSAPI -LLL -b "dc=dsfw-s1,dc=frdnbase,dc=com" -s sub '(&(&(|(1.3.6.1.4.13885.15.17=-1)(&(&(1.2.840.113556.1.4.782=group)(|(1.2.840.113556.1.4.750=8)(1.2.840.113556.1.4.750=-2147483646)))(2.5.4.3=dom*)))(!(objectCategory=computer)))(|(objectCategory=person)(objectCategory=group)))' dn grouptype

Should return something like this
dn: cn=Domain Guests,cn=Users,dc=dsfw-s1,dc=frdnbase,dc=com
grouptype: -2147483646

dn: cn=Domain Admins,cn=Users,dc=dsfw-s1,dc=frdnbase,dc=com
grouptype: -2147483646

dn: cn=Domain Controllers,cn=Users,dc=dsfw-s1,dc=frdnbase,dc=com
grouptype: -2147483646

dn: cn=Domain Computers,cn=Users,dc=dsfw-s1,dc=frdnbase,dc=com
grouptype: -2147483646

dn: cn=Domain Users,cn=Users,dc=dsfw-s1,dc=frdnbase,dc=com
grouptype: -2147483646