What Are CN, OU, DC In An LDAP Search? - Read For Learn

• CN = Common Name
• OU = Organizational Unit
• DC = Domain Component

These are all parts of the X.500 Directory Specification, which defines nodes in a LDAP directory.

You can also read up on LDAP data Interchange Format (LDIF), which is an alternate format.

You read it from right to left, the right-most component is the root of the tree, and the left most component is the node (or leaf) you want to reach.

Each = pair is a search criteria.

With your example query

("CN=Dev-India,OU=Distribution Groups,DC=gp,DC=gl,DC=google,DC=com");

In effect the query is:

From the com Domain Component, find the google Domain Component, and then inside it the gl Domain Component and then inside it the gp Domain Component.

In the gp Domain Component, find the Organizational Unit called Distribution Groups and then find the object that has a common name of Dev-India.

Related Posts:

1. Query to list all users of a certain group
2. What are the differences between LDAP and Active Directory?
3. How can I figure out my LDAP connection string?
4. Powershell: A positional parameter cannot be found that accepts argument “xxx”
5. Cannot get Kerberos service ticket: KrbException: Server not found in Kerberos database (7)
6. Authenticating in PHP using LDAP through Active Directory
7. How can I find out what AD groups I’m a member of?
8. Find name of Active Directory domain controller
9. Is there a way to view the members of an Active Directory group if you aren’t a domain admin and can’t log into to a domain controller?
10. What is ADFS (Active Directory Federation Services)?
11. ldap_sasl_bind(SIMPLE): Can’t contact LDAP server(-1)
12. LDAP query in PowerShell
13. Command line to list users in a Windows Active Directory group?
14. What is Active Directory Domain Services and how does it work?
15. Windows Active Directory naming best practices?