LDAP Custom Filter to import users?

ryabutler · ‎09-13-2011

I'm trying to setup a LDAP Custom Filter to filter specifc users in AD, but I don't see any good examples for setting up a filter. I haven't done that before.

For example,

Users exist in OU=TEST, DC=CISCO,DC=COM

I want to filter the user "testuser1" from that OU and allow all other users.

What would be the filter syntax I can use in CUCM 8?

Thank you!

-rya

Joseph Martini · ‎09-13-2011

Here's how to not import the user "joemar2":

(!(sAMAccountName=joemar2))

ryabutler · ‎09-13-2011

Thank you!

ryabutler · ‎09-13-2011

Another question, how would this same string work if there were multple users I don't want to import?

Thank you!

-rya

Aaron Harrison · ‎09-13-2011

I guess the short answer is 'not well'. If you want to frequently add users that should be blocked, you may be better off simply denying 'read' permissions to the user accounts in question for the CCM LDAP service account.

At least that way it's all managed in one place - i.e. whoever adds the account to AD and determines it should be 'ex-directory' can just set the permissiosn within AD.

Regards

Aaron

Please rate helpful posts..

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!