LDAP Search Bases

Owned by Former user (Deleted)
Last updated: Jul 31, 2023 by Shawn Fletcher
2 min read

An LDAP server's database is organized hierarchically, typically with different branches in the tree for users, groups, and other services. This page allows you to select where in the LDAP database to search for different types of information, and how deep to search for each.

By default, all searches will be done under the Global search base. However, because most servers put users and groups under different sub-trees, you will probably need to set the Base for Unix users and Base for Unix groups to the distinguished names for those sub-trees. The Base for Unix passwords should be set to the same DN as Base for Unix users, as password information is almost always stored with other user attributes.

Defining Search Depth

  • If the Default is selected, the Entire subtree will be searched. This means that the search will drill down through each group or organization, and search within them.

  • A One level search means that the search will go through any groups found within, but will NOT go through any sub-groups within those groups.

  • A Base only search will NOT search any groups within the search base.

Search Filter

A Search Filter can be set to filter records by an LDAP attribute or attributes value.