Printout Header
LEX RSS Feed

LEX Online Manual Content

Famous Filters

LEX can store LDAP filters to disk so that they can be re-used later on. There are several different situations where you can load these stored Filters: In the object list filter, in directory searches or generally in the LEX Filter Factory. LDAP filters are saved as simple text files which contain the filter string, these files are stored in the subdirectory 'LDAPFilter'.

LEX comes with a bunch of pre-defined filter files which can be used right away:


LDAP Filters for Active Directory Environments


AD - Computers:
(objectCategory=Computer)

AD - Contacts
(objectCategory=contact)

AD - Domain Controllers
(&(objectCategory=Computer)
(userAccountControl:1.2.840.113556.1.4.803:=8192))


AD - Exchange Recipients
(mailNickname=*)

AD - Exchange Recipients - hidden
(&(msExchHideFromAddressLists=TRUE)(!objectClass=publicFolder))

AD - Exchange Recipients - with FAX address
(proxyAddresses=FAX:*)

AD - Exchange Servers
(&(objectClass=msExchExchangeServer)(!(objectClass=msExchExchangeServerPolicy)))

-> Use the AD Forest configuration container as a search base!

AD - Global Catalogs
(&(objectCategory=nTDSDSA)(options:1.2.840.113556.1.4.803:=1))
-> Use the AD Forest configuration container as a search base!

AD - Groups - empty
(&(objectClass=group)(!member=*))

AD - Groups - security groups
(groupType:1.2.840.113556.1.4.803:=2147483648)

AD - Objects - cant be deleted
(systemFlags:1.2.840.113556.1.4.803:=-2147483648)

AD - Objects - cant be renamed
(systemFlags:1.2.840.113556.1.4.803:=134217728)

AD - Users
(&(objectCategory=person)(objectClass=user))

AD - Users (more effective)
(sAMAccountType=805306368)

AD - Users - disabled
(&(sAMAccountType=805306368)(userAccountControl:1.2.840.113556.1.4.803:=2))

AD - Users - dont require password
(&(sAMAccountType=805306368)(userAccountControl:1.2.840.113556.1.4.803:=32))

AD - Users - mail enabled
(&(sAMAccountType=805306368)(mailNickname=*))

AD - Users - password never expires
(&(sAMAccountType=805306368)(userAccountControl:1.2.840.113556.1.4.803:=65536))


LDAP Filters for Novell eDirectory Environments


eDirectory - NetWare Servers
(objectClass=ncpServer)

eDirectory - NetWare Volumes
(objectClass=volume)

eDirectory - ZEN Applications
(objectClass=appApplication)


LDAP Filters for all LDAP Environments (including Active Directory and eDirectory)


LDAP - Groups
(|(objectClass=group)(objectClass=groupOfNames))

LDAP - InetOrgperson
(objectClass=inetOrgPerson)

LDAP - OUs
(objectClass=organizationalUnit)

LDAP - Users
(|(objectClass=inetOrgPerson)(objectClass=user))

LDAP - Users - with Certificates
(&(|(objectClass=inetOrgPerson) (objectClass=user))(userCertificate=*))

LDAP - Users - with Passwords
(&(objectClass=inetOrgPerson)(userPassword=*))
-> For generic LDAP environments

LDAP - Users - without Mailaddress
(&(objectClass=inetOrgPerson)(!(mail=*)))
-> For generic LDAP environments