Not directly Perl related probably but for the couple of days now I've been thinking why Net::LDAP does not find objects with the filter "(objectclass=cRLDistributionPoint)". I know (make that I think) that this information is not in the Domain partition of Active Directory, but is there a way I could still access it?
The code below returns no objects even though the LDAP browser app for windows (by softerra) does:
my $filter = "(objectclass=cRLDistributionPoint)";
my $ldap = $functions->ldap($ldapserver, $useraccount, $password);
my $objects = $functions->ldap_search($ldap, $filter, 'sub', $basedn);
foreach my $entry ($objects->entries)
{
print $entry->get_value('cn') . "\n";
}
Don't be scared of the short snippet, since $functions is a object defined elsewhere. I'm just curious why I can use the same filter with other some other LDAP program, but Net::LDAP returns zero objects. And I am binding in all the time with the same Domain User account.
Basically I'm trying to dig out the Certificate Revocation Lists created by my Certification Authorities and then iterate through the serials listed in those lists. There's the Crypt::X509::CRL that I was looking in for the actual decoding part.