LDAP queries to a GC

  • Thread starter Thread starter Pablo E. Colazurdo
  • Start date Start date
P

Pablo E. Colazurdo

Is there anyway to do direct queries to a GC by using standard ldap
searches? We have a lot of different domains in the same forest and I want
to be able to do searches from a unix box using standard ldap commands to
our domain controllers but I don't want to have to search on each different
domain for looking for someone ... any ideas?

Thanks in advance,
Pablo
 
When constructing your LDAP queries direct them to TCP port 3268, and in
particular to a domain controller which hosts the global catalog.

--

Tim Springston
Microsoft Corporation

This posting is provided "AS IS" with no warranties, and confers no rights.
 
Hi,

Knowledge Base article Q224543, "Using Ldp.exe to Find Data in the Active
Directory" will probably help you out. There is also a tools help file
installed with the Support Tools that contains a document about using LDP.

Ldp.exe is a Windows 2000 Support Tools utility you can use to perform
Lightweight Directory Access Protocol (LDAP) searches against the Active
Directory for specific information given search criteria. This also allows
administrators to query data that would otherwise not be visible through
the Administrative tools included in the product. All data that is returned
in LDP queries, however, is subject to security permissions.

For more information look at http://support.microsoft.com/?id=224543

Thanks,
(e-mail address removed)

This posting is provided "AS IS" with no warranties, and confers no rights.
 
it doesn't work ... if I contact a GC which belongs to a corp.xyz.com and
ask for a object which belongs to branch.xyz.com it can't find it. but if I
use a GC belonging to branch.xyz.com it works ok.

corp and branch are child domains (mixed mode) of xyz.com (native mode)

Thanks again,
P.
 
Ok ... I've found my problem ... I was using the default dn and I've found I
have to use the "dc=xyz,dc=com" to make it work


Thanks a lot,
Pablo
 
If that's the case there's replication problems. The GC should hold a copy,
albeit a partial one, of all objects in the forest. If there's objects that
exist that are not in the GC (and applicable time has been allowed for
replication latency) then there's problems.


--

Paul Williams

http://www.msresource.net
http://forums.msresource.net


it doesn't work ... if I contact a GC which belongs to a corp.xyz.com and
ask for a object which belongs to branch.xyz.com it can't find it. but if I
use a GC belonging to branch.xyz.com it works ok.

corp and branch are child domains (mixed mode) of xyz.com (native mode)

Thanks again,
P.
 
Back
Top