Santosh Kumar wrote:
Trying to query Active Directory via command line for searching all Please let me know what this error refers to
./ldapsearch -h 10.10.10.50 -b "ou=users,DC=SFBAY,DC=tech,DC=com" -s sub "objectclass=*"
text: 00000000: LdapErr: DSID-0C090627, comment: In order to perform this ope ration a successful bind must be completed on the connection., data 0, vece
As already said in this thread MS AD does not allow anonymous access (except read access to some configuration data). You have to bind as a domain user. Something like this:
./ldapsearch -h 10.10.10.50 -b "ou=users,DC=SFBAY,DC=tech,DC=com" -D
"cn=myaccount,ou=users,DC=SFBAY,DC=tech,DC=com" -W -s sub "objectclass=*"
Obviously you have to know the bind-DN in advance.
i'm looking to extract -b option and -D from AD
I'm not sure what you mean here.
Ciao, Michael.