Hey Hallvard,
thanks for your prompt response. My big concern is that at the time of search I am not aware of the ldap tree structure. In other words, I only know about root, project, and site1, and dont have any info about rest of the tree (existence of site 2 etc). Perhaps I can do one search for excluded sites like site2, and use the result to return appropriate users. this should be possible as I am using jLDAP to connect to ldap directory from my java code. I would like to do one query though.....not sure if it is possible!
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
To: Hamidreza Hamedtoolloei <hamedtoolloei@yahoo.com>
Cc: openldap-technical@openldap.org
Sent: Sunday, November 2, 2008 9:26:54 AM
Subject: Re: regarding ldap filters "extensible match search"
Hamidreza Hamedtoolloei writes:
> given the partial tree below, how can I return users in the root,
> project, and site1 (i.e. dont want to return site2 users).
ldapsearch -x ... '(&(uid=hamedtoolloei)(!(ou:dn:=site2)))'
This omits results that have ou=site2 in the DN.
--
Hallvard