Re: LDAP query returns data in parent domain but not from child domain

---

• From: "Richard Mueller [MVP]" <rlmueller-nospam@xxxxxxxxxxxxxxxxxxxx>
• Date: Mon, 10 Dec 2007 08:12:21 -0600

---

Howard Bullock wrote:

My query:
select objectSid from 'LDAP://dc=child,dc=company,dc=com' where memberof =
'CN=GatdWillHamatyU,CN=Users,DC=child,DC=company,DC=com'

This format work fine for querying membership of groups in
DC=company,DC=com' where my user account resides.

One thing I suspected was that I needed to tell the query where to bind so
I
modified it to be:
select objectSid from
'LDAP://child.company.com/dc=child,dc=company,dc=com'
where memberof = 'CN=GatdWillHamatyU,CN=Users,DC=child,DC=company,DC=com'.

This also failed. I even used a FQDN of a domain controller in the child
domain.

How should I structure the ADO connection and LDAP SQL dialect query to
list
the full membership of all groups in a child domain? Incidentally my
computer
is currently in the child domain.

Try using GC:// instead of LDAP://. The memberOf attribute is in the global
catalog.

--
Richard Mueller
Microsoft MVP Scripting and ADSI
Hilltop Lab - http://www.rlmueller.net
--


.

---

• Follow-Ups:
  • Re: LDAP query returns data in parent domain but not from child domain
    • From: Richard Mueller [MVP]

• References:
  • LDAP query returns data in parent domain but not from child domain
    • From: Howard Bullock

• Prev by Date: Re: How is WScript.ScriptName in PowerShell?
• Next by Date: Re: LDAP query returns data in parent domain but not from child domain
• Previous by thread: LDAP query returns data in parent domain but not from child domain
• Next by thread: Re: LDAP query returns data in parent domain but not from child domain
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)