I have configured LDAPCP in a test environment to connect to a non-domain LDAP server. I was attempting to apply a filter to only retrieve results for objects that are members of one of two security groups (and the groups exist in different domains). Using
a filter similar to the example provided:
I see only results for users who are members of the security group ADFSMSPROJECT as expected.
When I complicate the filter a bit, for instance:
(!(objectClass=computer))((memberOf=CN=ADFSMSPROJECT,OU=Security Groups,DC=OrgNameA,DC=local)|(memberOf=CN=ADFSMSPROJECT,OU=Security Groups,OU=MyBusiness,DC=OrgNameB,DC=local))
I see no results returned. Even users who would have been recognized in application of the first filter are no longer found.
Did I miss some part of the syntax, or is there something else I am breaking with this filter? Is there a better strategy to limit user recognition when working with multiple domains?