A (LDAP) filter is a way of specifying a set of entries, based on the presence of a particular attribute or attribute value. You can use an LDAP filter in access control rules. For example, the default access control rules include a filter specifying that users can add their own DNs to the member attribute of any entry that contains the joinable attribute with a value of TRUE. This allows users to add or remove their names from distribution lists.
Refer to the section entitled "ldapsearch." Additional information about LDAP directory concepts and configurations are included in Chapter 4, "Sun Directory Services Configuration," in the section entitled "LDAP Directory Concepts."