user-search-filter
The user-search-filter is a configuration file parameter in the [ldap] stanza for ldap.conf that specifies the LDAP search filter used by ISAM.
user-search-filter = <ldap search filter>Default value
For AD LDS and Sun Directory Servers:
user-search-filter = (|(objectclass=ePerson)(objectclass=Person)(objectclass=User))
For all other LDAP Directory Servers:
user-search-filter = (|(objectclass=ePerson)(objectclass=Person))
Option descriptions
LDAP search filter used by ISAM to locate users in the LDAP directory server. This filter must be a valid LDAP string search filter as described by the Request for Comments (RFC) 2254 document.
Use the user-search-filter option with user-objectclass so the ISAM can locate LDAP users created with the LDAP object classes. Do not update the unsupported option with the same name under the [ldap-generic-general] stanza.
Usage
Optional: Use this configuration file parameter to specify how to locate Security Verify Access users in LDAP.
Example
This example specifies a search for a User or Person under objectclass.
[ldap] user-search-filter = (|(objectclass=User)(objectclass=Person))