How do I query for users in active directory?

larslars
in Modules and DataFlows

You can use the Active Directory Query module.

Uri input value would be LDAP://ldapservername

To get a list of the LDAP servers you can run: nltest /dclist:DOMAINNAME on the commandline. Replace DOMAINNAME with the name of your domain. 

Filter / query input for users would be: (&(objectCategory=person)(objectClass=user)(!userAccountControl:1.2.840.113556.1.4.803:=2))

The column input can be used to select only certain fields.

Comments

  • ryanryan

    A good starting set of fields to cover most use cases would be the following:

    ["givenname","mail","title","homephone","department","telephonenumber","userprincipalname","description","st","samaccountname","initials","sn","cn","name"]

  • andyvidanandyvidan

    To Query for an ACL:

    First, find the distinguished name using the following query:

    (&(objectCategory=group)(cn=nameOfACL))

    Then, use this to query fr users in the ACL, as follows:

    (&(objectCategory=user)(memberOf=CN=nameOfACL,OU=O365 Groups,OU=Groups,OU=Global Infrastructure,DC=MFCGD,DC=com))


    A sample DataFlow can look like this:

    image.png


Sign In or Register to comment.

© Vanilla Keystone Theme 2023