An organization that has been granted consent by a group of users can perform an LDAP search so that they can use the consent data in the aggregate.
For this task, consider the example scenario where a marketing group has collected
consent to send a newsletter by email. To find all the users that have granted consent
to receive emails, the marketing group performs a search that lists all of the consent
records where the consent definition is email
and the status is
accepted
. Then, the marketing group must correlate these consent
records to user entries and retrieve each user's email address.
Every consent record contains a subject
field, the user whose data is
collected and stored. You can configure the Consent Service so that it stores the
subject's distinguished name (DN) in the subjectDN field.