Active Directory: Search for only user objects

I'm using the search filter "(objectClass=user)" to find user objects, but of course it also returns computers because a computer also has user in its objectClass. How can I create a filter to only return objects users and not objects whos type inherits from user?

Solution

(&(objectClass=user)(objectCategory=person))

(via Microsoft Learn)

Generate IDP Certificate in Azure AD for SSO
Why is my Spring LDAP search failing to return a user
Restrict Microsoft Azure App OAuth2.0 to Internal Users
I need to replace the path to a mapped network drive at a scheduled time. How do I do it?
LDAP authentication using Spring security 2.0.3
Symfony dont respect Active Directory constraint
Powershell Get-ADGroupMember and Get-ADUser
active directory filter with objectGUID encoded as specified in rfc2254 doesn't work
"Cannot find an overload" Error When Using System.DirectoryServices.ActiveDirectoryAccessRule in PowerShell
Adding users temporarily to Active Directory groups using PHP
Kerberos Keytab: Getting error while creating keytab for MSA on Active Directory
Need to export the output of powershell script of to csv file
Attempting to sort out Manager Name from Get-ADUser
How to resolve [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 773, v1db1 ]
PowerShell Find Members of Two Specific AD Groups
Why does Jenkins Active Directory lookup fail occasionally?
Copy/clone folder permissions to another folder (Windows)
extract specific string from the field returned
Password does not work after sleep
Unknown value in PowerShell Custom Object
How to get user's password expiration date from Active Directory?
Pull of AD users managers name and email to existing script powershell script
Query list of computers - output last logged on user and last logon date
How to get PowerShell to export error message to CSV?
Add Sip to proxyaddress attribute in AD using powershell
Active Directory: Search for only user objects
Powershell pipeline objects from import-csv headaches
Active Directory ADUser whenCreated Property
Print Local Group Members in PowerShell 5.0
Get current computer's distinguished name in powershell without using the ActiveDirectory module