Re: Urgent: Restrict LDAP Queries of a domain user
- From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 15 Jun 2007 08:42:10 -0500
From the LDAP perspective, you can't restrict this. If the users can readobjects in the tree, then they can use the object as a base DN in a query
and can use subtree, one level or base for their query level.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"Filipe" <clemente.filipe@xxxxxxxxx> wrote in message
news:1181905342.631608.6480@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi,
I want to have a Windows 2003 domain user performing LDAP queries only
to a certain scope (subtree) of the entire Active Directory tree. I
only have one Windows 2003 domain.
Is there a way to restrict LDAP queries of a particular user?
Is this possible? If yes, how?
TIA,
Clemente
Portugal
.
- Follow-Ups:
- Re: Urgent: Restrict LDAP Queries of a domain user
- From: Filipe
- Re: Urgent: Restrict LDAP Queries of a domain user
- References:
- Urgent: Restrict LDAP Queries of a domain user
- From: Filipe
- Urgent: Restrict LDAP Queries of a domain user
- Prev by Date: Re: False Alert - AD database restored by unsupported procedure.
- Next by Date: Re: NTDS KCC with Windows Firewall service
- Previous by thread: Re: Urgent: Restrict LDAP Queries of a domain user
- Next by thread: Re: Urgent: Restrict LDAP Queries of a domain user
- Index(es):
Relevant Pages
|
