Re: Does AD automatically sort attributes

---

• From: "Joe Kaplan \(MVP - ADSI\)" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Sun, 22 Jan 2006 21:29:29 -0600

---

The LDAP V3 specification and AD both specify that clients should never
assume that multiple attribute values will be returned in any predictable
order. Even if the order appears to be predictable, the client should
assume that they might be returned in a different order with each search.

Joe K.

<stootles@xxxxxxxxx> wrote in message
news:1137970042.756098.198840@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Hi,
>
> I am writing a small script for updating AD, I have no experience with
> AD itself and am taking data from an older Netscape LDAP server and
> placing it into the AD server via the AD LDAP interface. This is being
> written in perl, and for the most part is done.
>
> One item of interest I have though is the I am writing some values into
> the ou attributes to match what we have in the older LDAP server.
> (Please confuse this with creating branches using an ou).
>
> With other LDAP servers I have worked with if I do the following:
>
> ou[0] = "ZZZZZZ"
> ou[1] = "YYYYY"
> ou[2] = "XXXXX"
>
> That is how it is written to the LDAP server and when retrieved it
> remains in that same order. This is the behaviour I expect and for some
> systems that access our LDAP servers require.
>
> Under AD though using the same code that is used to write to the other
> LDAP servers when I request the information I have just written AD has
> sorted the attribute data alphabetically (most undesirable in this
> instance).
>
> Can anyone give me advice on this behaviour from AD? Can it be disabled
> on an attribute level? Is there somewhere I can point the AD
> administrator so he can disable this behaviour?
>
> Any advice grateful,
>
> Stewart James
>


.

---

• Follow-Ups:
  • Re: Does AD automatically sort attributes
    • From: stootles

• References:
  • Does AD automatically sort attributes
    • From: stootles

• Prev by Date: Re: Move Enterprise root CA to a new 2003 sp1 AD server
• Next by Date: Re: Does AD automatically sort attributes
• Previous by thread: Does AD automatically sort attributes
• Next by thread: Re: Does AD automatically sort attributes
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: SYN-FLOOD to LDAPS port from clients ... >>I'm running an LDAP server to authenticate users using secure ldap on ... or is it truly ldap clients flooding the server? ... >>Ryan Golhar ... (RedHat) Re: OpenLDAP + User Authentication ... and you cant really import the passwords from the other ldap server into yours. ... now what you will want to do is set up one ldap server as the masterm and the other as the replica. ... Subject: OpenLDAP + User Authentication ... is not the intended recipient or the employee or agent responsible to ... (RedHat) Re: freebsd6 authenticating against openldap 2.4? ... machines to get LDAP authentication working. ... Every box was configured differently and ports trees had ... able to run shell accounts on different boxes on a per-user basis, ... LDAP server as user ldap, the system tries to consult all the sources ... (freebsd-questions) Re: Migration Of All Users In LDAP Server In LINUX Fedora! ... One other command you may need to look at is authconfig...which will ... help set up all the config files necessary to authenticate using ldap ... LDAP server. ... Now we have the data in the format understood by LDAP server. ... (Fedora) RE: OpenLDAP + User Authentication ... Some users will be unique to the first LDAP, ... the first LDAP directory and the second LDAP directory: ... access to their ldap server and doubtful they will give up their ldap ... I have an LDAP server which I'm using to authenticate my users from. ... (RedHat)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.active_directory  > 2006-01