mellin has asked for the wisdom of the Perl Monks concerning the following question:
Not directly Perl related probably but for the couple of days now I've been thinking why Net::LDAP does not find objects with the filter "(objectclass=cRLDistributionPoint)". I know (make that I think) that this information is not in the Domain partition of Active Directory, but is there a way I could still access it?
The code below returns no objects even though the LDAP browser app for windows (by softerra) does:
my $filter = "(objectclass=cRLDistributionPoint)"; my $ldap = $functions->ldap($ldapserver, $useraccount, $password); my $objects = $functions->ldap_search($ldap, $filter, 'sub', $basedn); foreach my $entry ($objects->entries) { print $entry->get_value('cn') . "\n"; }
Don't be scared of the short snippet, since $functions is a object defined elsewhere. I'm just curious why I can use the same filter with other some other LDAP program, but Net::LDAP returns zero objects. And I am binding in all the time with the same Domain User account.
Basically I'm trying to dig out the Certificate Revocation Lists created by my Certification Authorities and then iterate through the serials listed in those lists. There's the Crypt::X509::CRL that I was looking in for the actual decoding part.
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Net::LDAP and Active Directory certificate revocation lists
by hominid (Priest) on Sep 19, 2008 at 17:31 UTC | |
by mellin (Scribe) on Sep 20, 2008 at 01:06 UTC | |
by hominid (Priest) on Sep 20, 2008 at 21:14 UTC | |
Re: Net::LDAP and Active Directory certificate revocation lists
by strat (Canon) on Sep 20, 2008 at 09:20 UTC | |
by mellin (Scribe) on Sep 22, 2008 at 13:49 UTC |