Announcing the SAVIYNT KNOWLEDGE EXCHANGE unifying the Saviynt forums, documentation, training, and more in a single search tool across platforms. Click HERE to read the Announcement.

LDAP error in AD connection

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on November 11 2020 at 17:21 UTC

I'm trying to use the following ldap query in our AD connection and getting a "Unbalanced parenthesis" error in our logs.


Trying to bring in all object = person, class = user, is not inactive, does not have an employeeID = 9000000, and also does not have a null EmployeeID.


(&(objectCategory=person)(objectClass=user)(sAMAccountName=*)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(!(employeeID=9000000))(!(!employeeID=*)))


This ldap filter works when doing a ldap lookup from inside active directory and I don't see any extra or missing paranthesis.


Does anyone have any suggestions as to why this is failing in the connection?



This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.
2 REPLIES 2

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on November 20 2020 at 09:10 UTC

There is an issue with search filter parathenthesis, you need to correct that.


(&

(objectCategory=person)

(objectClass=user)

(sAMAccountName=*)

(!

(userAccountControl:1.2.840.113556.1.4.803:=2)

)

(!(employeeID=9000000))

(!(employeeID=*))

)

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Community_User
Saviynt Employee
Saviynt Employee
Originally posted on November 24 2020 at 16:58 UTC

This results in the exact same error message.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.