[cifs-protocol] [samba4][MS-ADTS] 3.1.1.3.4.4.3 - LDAP_MATCHING_RULE_TRANSITIVE_EVAL clarification
Samuel Cabrero
scabrero at zentyal.com
Wed Nov 12 04:55:42 MST 2014
Dear dochelp team,
I am working on LDAP_MATCHING_RULE_TRANSITIVE_EVAL match rule
implementation on samba and I have found that my tests fail against
Windows Server 2008 R2 when the attribute value to match specified in
the search filter has Object(DN-Binary) syntax, for example:
Search scope: Base
Search base DN: Domain base DN
This filter returns one entry:
wellKnownObjects=B:32:aa312825768811d1aded00c04fd8d5cd:CN=computers,<base
DN>
This filter does not return any entry:
wellKnownObjects:1.2.840.113556.1.4.1941:=B:32:aa312825768811d1aded00c04fd8d5cd:CN=computers,<base
DN>
According to [MS-ADTS] Section 3.1.1.3.4.4.3 I understand that the
Object(DN-Binary) syntax should be handled in the match rule
implementation. Should this search return the same entry that the one
returned without the extended match?
Best Regards,
--
Samuel Cabrero - Developer
scabrero at zentyal.com
Zentyal - Active Exchange
www.zentyal.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/cifs-protocol/attachments/20141112/6c300b91/attachment-0001.pgp>
More information about the cifs-protocol
mailing list