Hello,
I am putting this information here so that others can find it and use it.
If you want to write a LDAP Query to return a list of accounts in an Active Directory Group then use the following:
- Query: (&(ObjectClass=group)(CN=GROUPNAME))
- Property to Retrieve: Member
Now you have the DN of all of the members of the group. Not useful yet as you need the Username to accomplish anything. So use another LDAP query:
- Query: (&(objectClass=user)(distinguishedName={WorkflowVariable:varEmployeeDN}))
Property to retrieve: samAccountName.
Now you have the account names of the users in the AD Group.
Matt