[cifs-protocol] [MS-ADTS] SID as DN alternative for querying groups by member - TrackingID#2209290040008412
Christof Schmitt
cs at samba.org
Thu Sep 29 23:32:28 UTC 2022
On Fri, Sep 30, 2022 at 12:07:33PM +1300, Andrew Bartlett wrote:
> Christof,
> Is the behaviour different on the Global Catalog port? Are both servers
> GC instances?
protocol9 was created first, so that should be a GC instance. And a
query to port 3268 returns the same result:
# ldapsearch -H ldap://adprotocol9.com:3268 -x -W -D "administrator at adprotocol9.com" -b "dc=adprotocol9,dc=com" "(member=<SID=S-1-5-21-686935948-1127628631-3386349506-1104>)"
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <dc=adprotocol9,dc=com> with scope subtree
# filter: (member=<SID=S-1-5-21-686935948-1127628631-3386349506-1104>)
# requesting: ALL
#
# search result
search: 2
result: 0 Success
# numResponses: 1
Regards,
Christof
More information about the cifs-protocol
mailing list