Hello,
First, I set the identification for a single domain: by entering the Login ID suffix it works.
Then for corporate needs, I need to use 3 subdomains.
Accounts to identify are:
- Xa.aaaaa @ domainA.mycorp.corp (without spaces)
- Xb.bbbbb @ domainB.mycorp.corp
- Xc.ccccc @ domainC.mycorp.corp
To consider this need, I connects to the GC of the forest and remove the LDAP suffix.
Image may be NSFW.
Clik here to view.
Connection Test: OK for all accounts (with the suffix).
For the sake of convenience, I would like that users do not have to inform their suffix.
So I attach the suffix "@*".
LDAP queries work correctly, I get my users well (only one answer each time, we have a different type of naming for each domain).
Search : (&(objectclass=user)(userPrincipalName=Xb.bbbbb@*)) ==> for domain user domainB.mycorp.corp
Image may be NSFW.
Clik here to view.
Search : (&(objectclass=user)(userPrincipalName=Xa.aaaaa@*)) ==> for domain user domainA.mycorp.corp
Image may be NSFW.
Clik here to view.
By cons, it is impossible to identify anyone on Serv-U...
If you have any tips ...
Regards
Sylvain J.
