|
Man, this has the potential of getting
dangerously close to that hygiene discussion a while back <mc> From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe LOL. I must say up front though that I
subscribe to the Bill Clinton style of being president. I will do a good job in
office but my personal life is my business. If I want to staple antlers on the
heads of squirrels and tie them to a little red sleigh and have them pull my
Guinea Pig dressed in a Red Coat and hat around the yard in the snow I don't
want any lip... <eg> If everyone can live with those terms, I
accept being president. joe From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Creamer, Mark joe for president <mc> From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Michael B. Smith Regardless of which on the
perl-to-vbscript -- this script rocks! I've already used it 3 times. VERY
handy. thanks. m From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe That was Robbie's area... :o) Oh another new option in ADFIND I forgot
to mention is secure alternate authentication. It has had simple bind for alt
creds for a long time. Now I am working on the secure bind. I am stuck on one
piece with authenticating DNs securely that ~Eric is looking into for me. UPNs
(this is undocumented from what I see) and domain\userid
(documented) is no problem. I.E. How do you send a DN into
SEC_WINNT_AUTH_IDENTITY for authenticating. Specifying creds is MUCH easier in
the simple bind than with the authenticated bind. No wonder people are doing
insecure crap, MS seems to encourage it. joe From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael B. Smith where is that perl to vbscript converter?
:-P From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe I previously promised a script to
convert adfind output to CSV format. This is until I get ADFIND so that it
natively outputs CSV which will occur in Version 2.0.0 at some point in the
future. I have been looking over the code and adding things to it and should be
releasing V1.25.0 in the next week. The updates are 1. Added alias for sddc (Security
Descriptor DeCode) switch for Dean called sddl. 2. Changed sddc to not insert
ntsecuritydescriptor to the list of attribs to retrieve if a specific attrib
list is specified 3. Added ability to specify PORT on
hostname string like host:port (e.g. localhost:3000). This is primarily for
ADAM as I got sick of doing /p portnumber. :) 4. Host specified as . is changed to
localhost.... Again for ADAM. (e.g. -h .:8000) 5. Fixed a small bug in elapsed time
routine that would show -.001 if time elapsed was really small. 6. Fixed a leak in the elapsed time
routine 7. Added -samdc which is SAM DeCode. This
decodes some of the SAM attributes such as userAccountControl,
sAMAccountType, groupType to english strings. 8. Added -kerbenc which implements
LDAP_OPT_ENCRYPT. This encrypts the traffic if kerberos bind is done (default
cred connection). 9. Added -maxe which is Max Entries.
You can specify the maximum number of entries to return so say you want a
sampling of computers you can do something like adfind -gc -b -f
objectcategory=computer -maxe 10 and it will return only the first 10
computers it finds. 10. I am in the process of adding the
ability to read the filter from a text file in case you have a filter that is
so large it won't fit on the command line. Maybe more stuff if I think of
something and can slap it in there. Anyway, here is the script for taking an
ADFIND dump text file and outputting it in CSV output. I will post this on
the website probably when I post the new ADFIND. joe SCRIPT: adcsv.pl #****************************************************************************************
$csvdelim=";"; # $update=0;
if ($help)
{DisplayUsage()}; if (!$outfile)
{$outfile=$infile.".txt"}; # @attriblist=sort
keys %attribs; print "DN
Count: $dncnt\n";
close IFH; print
"\n\nThe command completed successfully.\n\n";
sub OutputObj
|
Title: RE: [ActiveDir] OT: Virtual Server 2005
- RE: [ActiveDir] ADFIND CSV Output Creamer, Mark
