Is there any way to query the engine for objects within a partition? I
want to return a list of users within a partition to sync over the users
who are in scope for a particular password policy.

I can think of a brute force sort of way, query for a list of users in
scope subtree, query for a list of partitions scope subtree, then
iterate through the users, and for each user look at each partition
except the root most and if the user is within that subtree remove them
from the list.

Like I said, it's a Mongo approach, looking for something more elegant,
hoping there is a hidden feature of the query token or something to do

Robert Rawson
Subject Area Master - Identity and Access Management
rrawson's Profile:
View this thread: