Matt's Linux Blog

I've learned a couple things about OpenLDAP in the past day:

• An object cannot belong to more than one STRUCTURAL objectClass
• An object must have a STRUCTURAL objectClass
• Don't do anything regarding authentication using an alias.
• Weird things happen when you delete an attribute that objects use from the schema.
• Use the "mail" instead of "email" attribute.
• C# makes it quite easy to search an LDAP tree.

However, I'm currently having trouble getting a DN from a DirectoryEntry or a SearchResult. I can get the Path, which looks like "LDAP://server/DN", but I want just the last "DN" part. I could do a simple string substitution, but that seems like asking for trouble later. Help!

Labels: addressbook, ldap