[midPoint] AD Ressource - Cannot filter on DN

HERTZOG Philippe Philippe.HERTZOG at groupe.schmidt
Wed Jul 16 10:32:41 CEST 2025 

Hello,

I'm using midPoint 4.9.3 to create a POC.
I'm creating a resource connected to a LDAP server using the out of the box LDAP connector. The structure of my legacy LDAP is as following

+ DC=Acme
            + cn=Groups

  *   Groups entries
+ cn=Users
            + cn=External

     *   Several users entries create by another system
+ cn=Iga

     *   Users managed from midpoint

My objective is to have a resource that manages :

  1.  The users from the Iga branch
  2.  Add users to groups

If I set the base context of my connector to cn=Iga, cn=Users,DC=Acme I can't get the groups. So I set the base contxt to DC=Acme.
But this way I retrieve all the users from cn=External also.

I try to put a filter for the User Object Type. Th efilter I tried was attributes/dn contains ",cn=Iga" but it doesn't filter as expected. I saw errors in the logs stating that it is not possible to use wildcards on dn.

So my question is : how can I implement this kind of scenario the best way?

[cid:image002.png at 01DBF63C.F4D6CC70]<https://www.groupe.schmidt/>

Philippe Hertzog
Architecte Cloud
20 Rue Westrich - F 67600 Sélestat
philippe.hertzog at groupe.schmidt<mailto:philippe.hertzog at groupe.schmidt>
Tél : +33 3 88 57 xx xx
Mobile : +33 6 19 18 32 78

www.groupe.schmidt<http://www.groupe.schmidt/> I [cid:image003.png at 01DBF638.D68407A0] <https://fr.linkedin.com/company/schmidt-groupe>  I[cid:image004.png at 01DBF638.D68407A0]<https://www.facebook.com/SchmidtGroupe>I


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20250716/1d3d3816/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.png
Type: image/png
Size: 452 bytes
Desc: image003.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20250716/1d3d3816/attachment-0003.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.png
Type: image/png
Size: 455 bytes
Desc: image004.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20250716/1d3d3816/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 22867 bytes
Desc: image002.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20250716/1d3d3816/attachment-0005.png>

More information about the midPoint mailing list