Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

LDAP Queries via URL

Tags:

url

excel

vba

ldap

I am trying to make LDAP queries via Visual Basic. I don't have administrator access to the Active Directory, but I am able to view all user objects. I don't know what restrictions if any there are on me searching the directory via LDAP:// queries.

In the Excel application I am building, I have a column for the input of user IDs. Once a user inputs a user ID, I would like the other columns to be auto-populated based on server side information associated with that user (email address for example)

Let's say c.Value is the User ID value that has been input to the spreadsheet: 

strUser = "CN=" & c.Value & ",OU=User Accounts,OU=Area,OU=Users,OU=Accounts,DC=joe,DC=bloggs,DC=co,DC=uk/"

Set objUser = GetObject("LDAP://" & strUser)

The problem is this -- where OU=Area is known, the search is successful. However, I would like the query to check all area OUs for the UserID. As far as I can tell they are not held or mirrored in a central location. Is it possible to use Wildcards in such a query?

Does anyone have any other ideas or suggestions as to alternate ways to go about this?

Thank you,

Tom

like image 813
t0mgerman Avatar asked Feb 04 '11 14:02

t0mgerman

People also ask

How do I link my LDAP URL?

Getting the Components of an LDAP URLTo get these attributes as an enumeration, use the getAttributes method. To get the hostname of the LDAP server, use the getHost method. To get the port number of the LDAP server, use the getPort method. To get the base DN, use the getDN method.

How do I create a LDAP URL?

All LDAP URLs must include a scheme followed by a colon and two forward slashes (e.g., “ldap://”). The address and/or port of the target directory server. The address may be an IPv4 or IPv6 address or a resolvable name.

What is DC in LDAP URL?

Examples of LDAP URLs The following LDAP URL specifies a base search for the entry with the distinguished name dc=example,dc=com. Because no port number is specified, the standard LDAP port number (389) is used. Because no attributes are specified, the search returns all attributes.

1 Answers

Before I answer your question, here are some basic background knowlege on Active Directory.

  • User objects on Active Directory contains a number of attributes.
  • CN is one of the attribute on the user object. It's not always the same as your login user name.
  • samAccountName is string the pre-Windows 2000 Login Name. This is probably what you are looking for.
  • objects are stored hierarchically. User object can be put under OU or container

To execute a LDAP query, you need to use an ADO connection object. You need to pass in a LDAP query string to the ADO connection object. The LDAP query string contains four parts.

  • Root path, where we start the search.
  • LDAP filter
  • Returned attributes
  • Search scope

The LDAP query string that you should use should be something like

<LDAP://OU=Users,OU=Accounts,DC=joe,DC=bloggs,DC=co,DC=uk>;(&(objectClass=user)(samAccountName=yourusername));adspath;subtree
  • The root path in the above example is <LDAP://OU=Users,OU=Accounts,DC=joe,DC=bloggs,DC=co,DC=uk>. It means start searching at this level
  • Since you are searching for user, the LDAP filter is (&(objectClass=user)(samAccountName=yourusername)). Of course, you need to replace yourusername to something else inside your code. If you really want to do the search on CN, change it to CN here
  • Returned attributes is a special attribute adspath, which allows you to bind to that object later
  • I am assuming you are trying to search for all user objects under the same domain. So, your search scope should be subtree

Here is a complete sample that I guess it should do your job

userName = "harvey"
ldapStr = "<LDAP://OU=Users,OU=Accounts,DC=joe,DC=bloggs,DC=co,DC=uk>;(&(objectClass=user)(samAccountName=" & userName & "));adspath;subtree

Set conn = CreateObject("ADODB.Connection")
conn.Provider = "ADSDSOObject"
conn.Open "ADs Provider"
Set rs = conn.Execute(ldapStr)

While Not rs.EOF
   wscript.echo rs.Fields(0)
   rs.MoveNext
Wend
like image 93
Harvey Kwok Avatar answered Oct 17 '22 02:10

Harvey Kwok
Sign in to Comment

Related questions

Get displayed string for cell value with openpyxl
Fast Fourier Transform Using Excel's VBA
Add visible cells of a range to array
How to convert string type array to variant type array - Excel VBA
ThisWorkbook.Sheets(1).Select (False) Not Working
reference a cell but keep formatting of text from source cell
Constant that indicates Access or Excel
openxlsx writing if formula from R to excel
Excel Add In - Where does console.log output it's message - NodeJS
Optional Argument of COM Add-in vs Automation Add-in Written in C#
Python: Converting excel file to JSON format
Checking Threaded Comments
Using predeclared classes in VBA as namespaces
Create an empty 2d array
How to refer multiple sheets in case statements
Change datatype when importing Excel file into Access
How to copy data from another workbook (excel)?
Redimming arrays in VBA
Saving Excel Spreadsheet using Interop C#
How to retrieve data from Excel using linq?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!