Hi everyone - By any chance would anyone know if you can do ldapsearch to list of the uid's (about 1000 of them that are saved in a text file) at once and put the output in a file?

I am only able to get one user at a time ... pls help...

I used this to get one uid information...but need to find them all...thanks in advance..

ldapsearch -L -h localhost -p 1521 -D "uid=admin,ou=cadmin,o=xyz.com" -w c_passwd -b o=abcd.com -s sub uid=00110rr

Put the "ldapsearch" command in a loop.

Pseudocode, not tested:

This works if filename is simply a list of the desired entries. If not, then you have to do more processing to extract the desired fields. (Post some sample entries from your file)

I got an error...can you please take a look at this? I appreciate...

while
read UID
do ldapsearch -L -h localhost -p 5221 -D "uid=some_admin,ou=someadmin,o=abc.com" -w some_passwd -b o=abc.com uid=$UID somequestion someuserstatus
done <t.txt


how could I output all information needed to a file?

currently I get this error in the server:

scope should be base, one, or sub
usage: ldapsearch [options] filter [attributes...]
where:
filter RFC-1558 compliant LDAP search filter
attributes whitespace-separated list of attributes to retrieve
(if no attribute list is given, all are retrieved)
options:
-n show what would be done but don't actually search
-v run in verbose mode (diagnostics to standard output)
-t write values to files in /tmp
-u include User Friendly entry names in the output
-A retrieve attribute names only (no values)
-B do not suppress printing of non-ASCII values
-L print entries in LDIF format (-B is implied)
-R do not automatically follow referrals
-d level set LDAP debugging level to `level'
-F sep print `sep' instead of `=' between attribute names and values
-f file perform sequence of searches listed in `file'
-b basedn base dn for search
-s scope one of base, one, or sub (search scope)
-a deref one of never, always, search, or find (alias dereferencing)
-l time lim time limit (in seconds) for search
-z size lim size limit (in entries) for search
-h host ldap server
-p port port on ldap server
-D binddn bind dn
-w passwd bind passwd (for authentication)
-j file read bind passwd from `file'
-M authentication-mechanism CRAM-MD5
scope should be base, one, or sub

In your first example, "uid" only appears once. In the second example, it appears twice.

I don't know all the nuances of ldapsearch, but take this absurdly simple example:

to find someone with last name "smith", I can do this:

assuming this works, I can then do:

There should be similar functionality with any field name used by ldap. First, test the commands manually---then put them into the script.


Also, post some samples from your file......

I apprciate for the assistance...I got it working I think it was typo...but works ok now...Thanks much again :-)