[Date Prev][Date Next] [Chronological] [Thread] [Top]

search with negation of undefined objectClass returns nothing

To: OpenLDAP-software@OpenLDAP.org
Subject: search with negation of undefined objectClass returns nothing
From: "Charlie H" <askldapquestion@hotmail.com>
Date: Tue, 22 Mar 2005 07:38:24 -0500

Hello,

I?ve been working on a conversion of a directory to OpenLDAP. I stumbled upon some search results that I could not explain.

One of our programs searches for LDAP entries with a negation of certain object classes, so that extraneous entries are ignored. In OpenLDAP, if the passed objectClass is not defined (as a valid objectClass in the schema), it returns back nothing every time.

For example, as expected, this returns back entries without the surname xx:

 $ ldapsearch -xb "o=OrgName,c=US" '(!(sn=xx))'

And this will return back entries that do not have the groupOfNames objectClass:

 $ ldapsearch -xb "o=OrgName,c=US" '(!(objectClass=groupOfNames))'

But the negation of an undefined objectClass returns nothing (without any error):

 $ ldapsearch -xb "o=OrgName,c=US" '(!(objectClass=xx))'

On another LDAP system (iPlanet), the last query above returns back all entries. Does OpenLDAP by design throw out the search for an objectClass value that is not defined? Could this be a configuration issue?

Many thanks for all of your efforts in this project!  --charlie h.

_________________________________________________________________ Don?t just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/

Follow-Ups:
- Re: search with negation of undefined objectClass returns nothing
  - From: Pierangelo Masarati <ando@sys-net.it>
- Re: search with negation of undefined objectClass returns nothing
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Uid with '+' sign ?
Next by Date: Referrals and ACL
Index(es):
- Chronological
- Thread