# Active Directory: User Search Filter
The user search filter (field User filter, if Login type is set to Active directory) will be generated by the authentication provider, because it depends on the login value:
- Before 4App Authentication Provider LDAP version 4.0.2, the user search filter from the LDAP configuration will be ignored.
- From 4App Authentication Provider LDAP version 4.0.2, the user search filter from the configuration will be associated to the generated filter from the backend with
and.
# Filter Generated Dependent from Login
This {CUSTOM_FILTER} will be replaced with the filter from the configuration or will be emptied if not set.
SSO-Token
(&((objectSid={0})(samAccountType=805306368){CUSTOM_FILTER}))userPrincipalName(&((userPrincipalName={0})(samAccountType=805306368){CUSTOM_FILTER}))NETLOGON Name(&((sAMAccountName={0})(samAccountType=805306368){CUSTOM_FILTER}))sAMAccountNameThis needs a configured domain name.
(&((sAMAccountName={0})(samAccountType=805306368){CUSTOM_FILTER}))
Example User filter configuration for Active Directory:
(&(objectclass=user)(memberOf=CN=Development,OU=development,OU=4ALLPORTAL,DC=cm,DC=dom))