LDAP Commands

Some LDAP commands.

apt install ldap-utils

# -n for rm last eof char
echo -n "MYPASS" > .huhu

# config
echo "BASE            ou=xxx,dc=ms,dc=xxx,dc=ch
URI             ldaps://xxx.ms.xxx.ch
BINDDN          ms\ronald
TLS_REQCERT     allow" > .ldaprc

# minimal: using config
ldapsearch -x -y .huhu "(&(objectClass=user))" display_name | grep numEntries

# maximal: define everyting outside
ldapsearch -x -LLL -H ldaps://xxx.ms.xxx.ch -D 'ms\ronald' -W -b 'dc=ms,dc=xxx,dc=ch' -s sub '(objectClass=*)' 'givenName=username*'

# search only groups
ldapsearch -x -y .huhu "(groupType:1.2.840.113556.1.4.803:=8)" dn

# display member of
ldapsearch -x -y .huhu uid=ronald memberOf
ldapsearch -x -b "ou=xxx,dc=ms,dc=xxx,dc=ch" -D "CN=ronald,OU=Users,OU=xxx,DC=ms,DC=xxx,DC=ch" -W "(anr=ronald)" display_name

# like search
ldapsearch -x -y .huhu "(anr=ict_b_)" memberOf

# only users
ldapsearch -x -y .huhu "(objectClass=user)" cn
ldapsearch -x -y .huhu -b "OU=users,OU=xxx,DC=ms,DC=xxx,DC=ch" "(&(objectClass=user)(objectCategory=person))" cn

Get-ADUser ronald -properties *