Re: Urgent: Restrict LDAP Queries of a domain user
- From: Filipe <clemente.filipe@xxxxxxxxx>
- Date: Fri, 15 Jun 2007 08:26:00 -0700
I can only set LDAP read permissions to all the tree? Not to some
portions (OUs) of the tree?
Joe Kaplan escreveu:
From the LDAP perspective, you can't restrict this. If the users can read
objects in the tree, then they can use the object as a base DN in a query
and can use subtree, one level or base for their query level.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"Filipe" <clemente.filipe@xxxxxxxxx> wrote in message
news:1181905342.631608.6480@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi,
I want to have a Windows 2003 domain user performing LDAP queries only
to a certain scope (subtree) of the entire Active Directory tree. I
only have one Windows 2003 domain.
Is there a way to restrict LDAP queries of a particular user?
Is this possible? If yes, how?
TIA,
Clemente
Portugal
.
- Follow-Ups:
- Re: Urgent: Restrict LDAP Queries of a domain user
- From: Joe Kaplan
- Re: Urgent: Restrict LDAP Queries of a domain user
- From: Filipe
- Re: Urgent: Restrict LDAP Queries of a domain user
- References:
- Urgent: Restrict LDAP Queries of a domain user
- From: Filipe
- Re: Urgent: Restrict LDAP Queries of a domain user
- From: Joe Kaplan
- Urgent: Restrict LDAP Queries of a domain user
- Prev by Date: Re: False Alert - AD database restored by unsupported procedure.
- Next by Date: What controls creation of xyz's music and xyz's pictures folders in home directory?
- Previous by thread: Re: Urgent: Restrict LDAP Queries of a domain user
- Next by thread: Re: Urgent: Restrict LDAP Queries of a domain user
- Index(es):
Relevant Pages
|
