note idsfa <p>This sounds very much like an [id://542341|XY Problem]. What are you actually trying to accomplish? Which said, I'm game to try and answer the question you asked ...</p> <p>The allowed content of an LDAP (v3) attribute is defined in the [wp://Lightweight_Directory_Access_Protocol#Schema|LDAP Schema]. You can use [mod://Net::LDAP::Schema] to retrieve this from the server. </p> <p>Unfortunately, this may or may not help you, as there are several "kinds" of binary data which can exist even in the [http://www.ietf.org/rfc/rfc2252.txt|Standard Types], let alone any custom extensions which you may have. For example, the RFC mentions the <c>Audio</c>, <c>Binary</c>, <c>JEPG</c> and <c>Octet String</c> syntaxes. You could probably implement a lookup table to specify which comparison method should be used, based upon the [wp://Object_identifier|OID] of the syntax for each attribute's value. This would be the route to take if you are (for example) trying to compare two different LDAP directories.</p> <p>If, OTOH, you are trying to find partially matching entries in a single LDAP, you might be able to make the server do the work and just use a [mod://Net::LDAP::Filter|filter] to pull out entries which match your desired attribute/value pairs. Since you don't seem to be to rigorous about comparing the binary values, this may be "good enough".</p> <code> my $filter = "(&"; foreach my $attr (keys %lookingfor) { $filter .= "($attr=\" . escape_filter_value($lookingfor{$attr}) . "\")"; } $filter .= ")"; $ldap = Net::LDAP->new($server); $mesg = $ldap->bind; $mesg = $ldap->search( base => $base, filter => $filter ); $mesg->code && die $mesg->error; foreach $entry ($mesg->entries) { $entry->dump; } $mesg = $ldap->unbind; </code>  <div class="pmsig"><div class="pmsig-195379"> <hr/> <I>The intelligent reader will judge for himself. Without examining the facts fully and fairly, there is no way of knowing whether vox populi is really vox dei, or merely vox asinorum. — Cyrus H. Gordon</I> </div></div> 601242 601242