Announcement

Collapse
No announcement yet.

Active Directory

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Active Directory

    Fully Qualified name....

    Hi I have an email appliance that is requesting I enter the details for AD authentication in the following format.

    CN=xxxxx,DC=xxxxxx,DC=xxxxxx


    I would like to list my whole AD in this format. Is there a command/utility i can run on the server to view this.

    Thanks

  • #2
    Re: Active Directory

    Hi,

    These names are known as "Distinguished Names" ans you can use the following command:

    ldifde -f xyz.ldf -l "distinguishedName"

    or

    csvde -f xyz.csv -l "distinguishedName"

    The above command will export all the objects, if you want to export any specific object class (e.g. users) then use as follows:

    ldifde -f xyz.ldf -r "objectclass=user" -l "distinguishedName"

    or

    csvde -f xyz.csv -r "objectclass=user" -l "distinguishedName"

    Regards,
    Kapil Sharma
    ~~~~~~~~~~~~~
    Life is too short, Enjoy It.

    Comment


    • #3
      Re: Active Directory

      Just to add:

      You an even give .txt ext also to the o/p file. The file will be created at the same location from where you will run the command:

      e.g. if you run the command as follows:

      C:\test\>csvde -f xyz.csv -l "distinguishedName"

      Then xyz.csv file will be created under "Test" folder on "C:" drive.

      Bydefault these commands can run on server O/S only.

      Regards,
      Kapil Sharma
      ~~~~~~~~~~~~~
      Life is too short, Enjoy It.

      Comment


      • #4
        Re: Active Directory

        Thanks a lot kapilsharma11

        Thats exactly what i was looking for.

        Comment


        • #5
          Re: Active Directory

          You can also use the adfind.exe utility available from http://www.joeware.net/freetools/tools/adfind/index.htm to display the distinguished name of various objects, for example to return the distinguished name. Below is an example to return the distinguished name of all user objects.

          Code:
          adfind -b <distinguished name of domain> -f "objectcategory=user" dn
          MCSA 2000/2003

          Comment


          • #6
            Re: Active Directory

            Thanks again. A Nice utility.

            Comment

            Working...
            X