Proxy Authorization

Request that an operation be processed by a different authorization identity than the one that is currently associated with the connection. See RFC 4370.

Using the Proxy Authorization Control

SearchOperation search = new SearchOperation(new DefaultConnectionFactory("ldap://"));
  SearchRequest request = SearchRequest.builder()
  .controls(new ProxyAuthorizationControl("dn:uid=dfisher,ou=people,dc=ldaptive,dc=org"))
  SearchResponse result = search.execute(request);
  for (LdapEntry entry : result.getEntries()) {
  // do something useful with the entries