Is there a way to explicitly write a user/group search filter in a way that the response from LDAP has restricted attributes?
We know a way it can be done using ldapsearch [the below example will fetch only attribute "cn" ]-
-D “insert user DN” -W [-w] -h “*************” -p
389 -b "dc=****,dc=com” -s sub "(&(objectclass=user)(objectCategory=person)(memberOf=CN=********,OU=****,DC=com))" cn
We would be glad if someone can help us finding a similar solution for LDAP settings in Ambari/Ranger/Zeppelin.
Currently every request from Ambari to LDAP server is fetching all the attributes , which is increasing the load on the ldap server. We are using ldap for the authentication of users only and not using information from any other attributes.