exclude some Active Directory groups from search #216

turovskysd · 2024-05-29T05:57:57Z

turovskysd
May 29, 2024

Hello Yvand.
Is it possible in LDAPCPSE add filter to exclude some Active Directory groups (for example "c:0-.t|adfssso|domain\gsharepoint1" and "c:0-.t|adfssso|domain\gsharepoint2") from search in people picker when we try add group to the site collection?
If yes, could you help with parameters how realize it?

Thank you!

Answered by Yvand

Jun 5, 2024

In the role claim type entry, you can set the Additional LDAP filter as below:

To exclude 1 group:
(!(sAMAccountName=group1))

To exclude 2 groups:
(!(sAMAccountName=group1)) (!(sAMAccountName=group2))

View full answer

Yvand · 2024-06-05T12:45:04Z

Yvand
Jun 5, 2024
Maintainer

In the role claim type entry, you can set the Additional LDAP filter as below:

To exclude 1 group:
(!(sAMAccountName=group1))

To exclude 2 groups:
(!(sAMAccountName=group1)) (!(sAMAccountName=group2))

0 replies

turovskysd · 2024-06-11T09:09:58Z

turovskysd
Jun 11, 2024
Author

Hello Yvand.
I had found solution

(!(&(sAMAccountName=GSTest))) (!(&(sAMAccountName=GSTest2)))

Thank you for your answer!

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

exclude some Active Directory groups from search #216

{{title}}

Replies: 2 comments

{{title}}

{{title}}

Select a reply

exclude some Active Directory groups from search #216

turovskysd May 29, 2024

Replies: 2 comments

Yvand Jun 5, 2024 Maintainer

turovskysd Jun 11, 2024 Author

turovskysd
May 29, 2024

Yvand
Jun 5, 2024
Maintainer

turovskysd
Jun 11, 2024
Author