13, LDAP lookups could only return the actual data sought, rather than information
that would automatically result in another lookup, but beginning with V8.13,
lookups are allowed to be recursive. LDAP recursion allows a query to return either a new
query, a Distinguished Name (DN) or an LDAP URL. When any of these are returned, they
result in another lookup.
LDAP recursion is requested withth is -v ldap database-map switch, which specifies the list
of attributes to return, like this:
-v attribute:type:objectclass|objectclass|...
Here, the type can be one of four literal values: NORMAL, DN, FILTER, or URL.
The NORMAL type says that the attribute will be added to the result of the lookup if the
record found is a member of the objectclass specified. NORMAL is the default type if type is
omitted.
The Distinguished Name (DN) type expects that any matches of the attribute have a fully
qualified distinguished name. If so, the sendmail program will perform a second lookup of
the attribute using the returned DN record.
The FILTER type requires that any matches of the attribute have the value of an LDAP
searchfilter. If so, the sendmail program will perform the same lookup again but will
replace the original search filter with the new filter returned.
The URL type expects that the lookup will return a URL. If so, the sendmail program will
perform a lookup using the returned URL and will then use the resulting attributes returned.
Pages:
1600
1601
1602
1603
1604
1605
1606
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618
1619
1620
1621
1622
1623
1624