[daneturner]

My site is using an edge MTA to relay mail between Zimbra and the internet. We've configured the edge MTA to do an LDAP lookup on Zimbra to verify incoming email addresses. However, distribution lists marked as "Hide In GAL" (zimbraHideInGAL TRUE) do not appear in the LDAP query results, and consequently get bounced as 'Unknown user' by the edge MTA. This is bad.

What is the correct way to query Zimbra's LDAP directory if we want to include hidden distribution lists in the results?

Here's anonymous LDAP query we're currently using from the edge MTA:

ldapsearch -LLL -D "" -h zimbra.greatschools.net -b ou=people,dc=greatschools,dc=net -x '(objectClass=zimbraMailRecipient)' zimbraMailHost zimbraMailDeliveryAddress mail

Thanks for suggestions,
Dane