Re: Enumerate User Attributes
- From: "Lee Flight" <lef@xxxxxxxxxxxxxxx>
- Date: Wed, 4 Jan 2006 16:39:15 -0000
Hi
as for prototyping against ADAM you can set a defaultNamingContext
for an ADAM instance. You need to set the msDS-DefaultNamingContext
attribute (it's a DN) on the NTDSA of the ADAM instance, you can find
the NTDSA as the dsServiceName attribute on the rootDSE of the ADAM
instance. That might help you port code, another thing to note is that if
you
need to read informational attributes from rootDSE in ADAM there are
some limitations in the ADSI provider on WinXP in that area if you are
working on that platform.
Another option would be to test against AD rather than ADAM in a VM
environment.
Also if you are using ADSI you might want to post your proposed algorithm
below to one of the AD programming/interfaces newsgroups so that some
of the developer experts can comment on your approach. Working with
group membership can be tricky especially if you have a multi-domain
environement.
HTH
Lee Flight
"Moe" <flightsafetyinternational@xxxxxxxxx> wrote in message
news:1136388259.991167.225040@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Hello,
>
> I would like to Query All Domain Users within ADAM/AD and specifically
> look at two attributes, Title and Department. Then based off those
> results, modify group membership of the user. Bottom line, I am trying
> to set group membership of based on the users Title and Department.
>
> Example:
> 1. Query all domain users for 3 attributes (title, department and group
> membership).
> 2. Based on the title and department attributes, determine if the user
> is a member of a specific group.
> 3. If the user is not a memberOf a specific group, add the membership
> to the group.
> 4. If they are a "memberOf" a specific list of groups, remove them from
> each of those groups.
>
> I have been able to successfully install ADAM, import schema from my
> production domain and then import a Bulk Object export from my domain.
> My purpose for setting up ADAM was to have an offline environment to
> perform queries and scripts without affecting production environment.
>
> If you could help point me in the right direction I can work toward a
> solution. I really don't know where to begin as I have read so many
> ideas of how to query users. Also, many of the ideas and scripts i
> have found will not work within ADAM as I am not able to get around
> "rootDSE and defaultnamingcontext" issues which i don't understand how
> to avoid when testing queries and scripts in ADAM.
>
> Any assistance is greatly appreciated!!!!!!!!
>
> Thank you,
> Moe
>
.
- Follow-Ups:
- Re: Enumerate User Attributes
- From: Moe
- Re: Enumerate User Attributes
- References:
- ADAM: Enumerate User Attributes
- From: Moe
- ADAM: Enumerate User Attributes
- Prev by Date: Re: No Network Connection
- Next by Date: Re: Dns Problem
- Previous by thread: ADAM: Enumerate User Attributes
- Next by thread: Re: Enumerate User Attributes
- Index(es):
Relevant Pages
|
