LDAP standard users: Administrator, etc
Hi guys.
I develop an application that read iformation from Active directory users (for the momment) using LDAP protocol.
These users are used to login in my application
All I want is to skip standard users like Administrator, Cert Publisher, etc
from users list when these users are imported in my application.
Exist one attribute that made difference between these kind of users and normal users like John, Mike, etc?
Thank you !
[474 byte] By [
bsturzoiua] at [2007-10-2 20:43:24]
Those users & groups are accounts that are referred to as Well Known Security Identifiers (SID's)
Refer to http://support.microsoft.com/kb/243330 for the details of these.
You could either issue a LDAP query that excludes those users from the result set, or retrieve all users and then filter the results in your app.
Refer to the topic "JNDI, Active Directory and SID's (Security Identifiers)" available at
http://forum.java.sun.com/thread.jspa?threadID=585031&tstart=150 for details on how to use SID's.
But I have to ask the question, why are duplicating the list of user names that can logon to your application ? Why don't you think about using a user's existing credentials and providing a single sign-on solution ?
