Unable to use the search filter when creating a Role in the application module (EPM)

Document ID : KB000013914
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

This KB illustrates the usage of the "Filter" search under Member Groups and Member Organization within the Role tab under EPM application.

Question:

I have an LDAP user store. Why do I keep getting API error message whenever I attempt to Filter for a group ? 

For Example my group is "cn=abc,dc=app,dc=com", if I enter abc in the Filter and attempt to search, I get the API error message.

Answer:

The proper way of using the Filter option within the Role to filter for Member Groups and Member Organization is as follows

1) AD/LDAP User Store --> Filter should be a valid RDN

Ex:

cn=ABC

ou=ABC

 

2) for ODBC User Store --> Any String/Literal

Ex:

ABC

Administrator

 

The reason why API Error was returned is due to the wrong search filter (abc) 

Wrong syntax of LDAP search filter: (&(|(objectclass=organizationalPerson)(objectclass=inetOrgPerson)(objectclass=organization)(objectclass=organizationalUnit)(objectclass=groupOfNames)(objectclass=groupOfUniqueNames)(objectclass=group))(abc))

 

The correct search filter would be by using the cn=ABC

Correct syntax of LDAP search filter: (&(|(objectclass=organizationalPerson)(objectclass=inetOrgPerson)(objectclass=organization)(objectclass=organizationalUnit)(objectclass=groupOfNames)(objectclass=groupOfUniqueNames)(objectclass=group))(cn=abc))