Valikko Suomi Čeština Dansk Deutsch English (US) Español (Latinoamérica) Español (España) Français (Canada) Français (France) हिंदी Magyar Bahasa Indonesia Italiano 日本語 한국어 Bahasa Melayu Nederlands Norsk Polski Português do Brasil Português (Portugal) Română Русский svenska ไทย Türkçe Українська Tiếng Việt 简体中文 繁體中文

lastLogonTimeStamp parameter LDAP filters in domain.conf

Avatar
Randy Moore

Has anyone successfully used the lastLogonTimeStamp parameter LDAP filters in your domain.conf to filter users by their last login time?  I need to confirm the syntax of those LDAP filters.  I have tried using the syntax in the ADI FAQ question #31. and my ADI sync is archiving every existing user in the domain even though my lastLogonTimeStamp value should be syncing several thousand users according to the values from Active Directory.  I'm assuming I have the syntax wrong but I don't have any other examples to follow other than in the KB.  Are you willing to share your lastLogonTimeStamp syntax.  Below is what I'm using.

filter_users_by_ou = "(&(lastLogonTimeStamp>=132184707960000000)(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*))(&(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*))"
filter_users_by_name = "(&(objectCategory=person)(objectClass=user)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*)(|{DYNAMIC_CONTENT}))"
filter_users_by_group = "(&(lastLogonTimeStamp>=132184707960000000)(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*)(|{DYNAMIC_CONTENT}))(&(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*)(|{DYNAMIC_CONTENT}))"

0

Kommentit

1 kommentti

Lajittelu Päivämäärä Äänet
  • Avatar
    Randy Moore

    This was resolved by KnowBe4 support.  They recommended the following syntax:

    filter_users_by_ou = "(&(lastLogonTimestamp>=132184707960000000)(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*))"

    filter_users_by_group = "(&(lastLogonTimestamp>=132184707960000000)(objectCategory=person)(objectClass=user)(mail=*)(!userAccountControl:1.2.840.113556.1.4.803:=2)(!cn=HealthMailbox*)(!cn=SystemMailbox*)(|{DYNAMIC_CONTENT}))"

    0
    Kommenttitoiminnot Pysyvä linkki

Kirjaudu sisään jättääksesi kommentin.

Etkö löytänyt etsimääsi?

Uusi viesti