Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

Active Roles LDAP Parser accepts incorrectly formatted LDAP (4378718)

Return

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Title

Active Roles LDAP Parser accepts incorrectly formatted LDAP
Description

When entering a custom LDAP query into the membership rule of a Dynamic Group or a Managed Unit, if the LDAP query is incorrectly formatted, it should be rejected with an error.

However, the Active Roles LDAP Parser accepts placing the negation operator ! in an ambiguous location.

For example:

This LDAP filter is correct:

(!(objectClass=user))

This LDAP filter is NOT correct, but is accepted by Active Roles:

(!objectClass=user)
Cause

This issue is being tracked as Defect ID 481457.
Resolution

WORKAROUND

Confirm that custom LDAP queries are properly formatted using an independent LDAP parser.

STATUS

Waiting for fix in a future release of Active Roles.
Change Request

481457

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Request a KB Article

Leave a Comment

Recommended Content

Product(s):: Active Roles
8.2.1, 8.2, 8.1.5, 8.1.3, 8.1.1, 8.0.1 LTS, 8.0 LTS

Topic(s):: Troubleshooting

Article History:: Created on: 3/11/2025
Last Update on: 3/11/2025

Search All Articles

© 2025 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center