LDAP Properties File Symbols and Attributes
The following symbols can be used in an ldap.properties file.
LDAP Search Context Symbols
The pipe character, |, can be used to separate multiple search context property values. This can be interpreted as a disjunction (or).
LDAP Search Filter Symbols
|
Symbol |
Name |
Description |
|
& |
Conjunction |
(and) All items in the list must be true. |
|
| |
Disjunction |
(or) One or more alternatives must be true. |
|
! |
Negation |
(not) Item being negated must not be true. |
|
= |
Equality |
Items must be equal according to the matching rule of the attribute. |
|
~= |
Approximate equality |
Items must be approximately equal according to the matching rule of the attribute. |
|
>= |
Greater than |
First item must be greater than or equal to the second item according to the matching rule of the attribute. |
|
<= |
Less than |
First item must be less than or equal to the second item according to the matching rule of the attribute. |
|
=* |
Presence |
The entry must have the attribute. Returns the attribute value. |
|
* |
Wildcard |
Searches for zero or more characters in the position of the attribute. A wildcard cannot be used for the placeholders USERNAME and USERDN (name and distinguished name of the current TDV user attempting LDAP authentication). In the following example, USERNAME is a placeholder: activedirectory.user.filter=(&(samaccountname=USERNAME) You cannot replace USERNAME with a wildcard to become: activedirectory.user.filter=(&(samaccountname=*) |
|
\ |
Escape |
Searches for the character following the backslash (asterisk, open parenthesis, or closed parenthesis) inside of an attribute value, rather than interpreting the character as part of search syntax. |
LDAP Attribute Key
|
Symbol |
Description |
|
o |
|
|
ou |
|
|
cn |
|
|
dn |
|
|
dc |