Share via

"ldap queries - need the dn of the users who are authenticated via ldap protocol and their IP address" We are migrating authentication out of AD/LDAP.

Dharanesha E 1 Reputation point
2021-11-30T08:33:50.417+00:00

LDAP/AD Experts,
It might be simple for you but its challenging task for me!.

****"ldap queries - need the dn of the users who are authenticated via ldap protocol and their IP address"
We are migrating authentication out of AD/LDAP.****

We’re looking to migrate applications that are directly using AD for employees.
Its not specific to OU and Group but overall active directory.
We have plenty of applications which uses AD/LDAP for authentication.
How do I pull such data? At least need to have user details.

Windows for business Windows Client for IT Pros Directory services Active Directory
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Pierre Audonnet - MSFT 10,191 Reputation points Microsoft Employee
    2021-12-02T20:39:32.68+00:00

    What do you mean migrating out of AD/LDAP? (specifically the AD part)

    You are removing Active Directory Domain Services from your environment? Getting rid of all the Domain Controllers? Or are you trying to identify who does LDAP Simple Binds in AD?

    0 comments
  2. Limitless Technology 39,916 Reputation points
    2021-12-02T20:55:31.62+00:00

    Hi @Dharanesha E

    To find the user and group base DN, run a query from any member server on your Windows domain.

    Finding the User Base DN

    Open a Windows command prompt.

    Type the command:
    dsquery user -name <known group name>

    In the above command, you can pull out DN users based on the known group name.

    ---------
    --If the reply is helpful, please Upvote and Accept it as an answer--

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.