[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Active Directory

To: "'Erick'" <erick@dark.uwaterloo.ca>, ldap <openldap-software@OpenLDAP.org>
Subject: RE: Active Directory
From: "Rechenberg, Andrew" <ARechenberg@shermanfinancialgroup.com>
Date: Fri, 25 May 2001 13:00:01 -0400

If you have multiple domain controllers and there are admins making changes
to one of them, they won't show up on the others until replication has
occurred between the DC's.  This is a shell script I use to search against
AD and it works consistently every time (unless of course someone changes
something on another DC and it hasn't replicated yet :) ).

#!/bin/sh
ldapsearch -LLL -W -h $2 -D "cn=someone,cn=users,dc=my,dc=com"
-b'dc=my,dc=com' $1

Then I run the script like this:

./ldp 'SEARCH_FILTER_HERE' [2000_DC_TO_QUERY]

The search you want below would be run like this:

./ldp '(&(cn=*)(objectclass=*))' eng2k.uwaterloo.ca

This script is how I check to see if a Win2K user's UNIX attributes are
correct for logging in to our Linux box.

Hope this helps
--Andy.


Andrew Rechenberg
Network Team, Sherman Financial Group
arechenberg@shermanfinancialgroup.com




-----Original Message-----
From: Erick [mailto:erick@dark.uwaterloo.ca]
Sent: Friday, May 25, 2001 11:54 AM
To: ldap
Subject: Active Directory



I would like to use the ldapsearch program against a Windows 2000 active
directory.

Using UMich's ldapsearch, the following command returned *something*
but only sometimes, running it 3 times in successsion might have
returned results once if I was lucky:

 ldapsearch -v -h eng2k.uwaterloo.ca -s sub -b \
    dc=nexus,dc=uwaterloo,dc=ca  \
    "(&(cn=*)(objectclass=*))"

With the latest OpenLDAP downloaded today, I get no results at all. Well,
at least my results are consistent.

Any suggestions?

Erick

Prev by Date: Re: Connection via Netscape 4.7 on Win98
Next by Date: Re: Connection via Netscape 4.7 on Win98
Index(es):
- Chronological
- Thread