开发者

vbscript, validate a user is in active directory by schema attribute

问答 作者:

I'm trying to write a vb script that prompts a user for a schema attribute which I'll call bID and checks that the person with that bID is in active directory. I really have no idea how to get started, there are plenty of examples on how to query active directory users but I havent found a good one regarding checking against specific attributes. Any help/suggestions are greatly appreciated!

UPDATE: ok heres my code so far, doesnt error out and returns 0, but I dont get a wscript.echo of the distinguished name for some reason. I included a few debugging wscript.echo's and it seems to never get into the while loop. Any ideas?

Option Explicit

GetUsers "CN=users,DC=example,DC=example,DC=example,DC=com","123456"

Function GetUsers(domainNc, ID)
    Dim cnxn    
    Set cnxn = WScript.CreateObject("ADODB.Connection")    
    cnxn.Provider = "ADsDSOObject"    
    cnxn.Open "Active Directory Provider"    
    Dim cmd    
    Set cmd = WScript.CreateObject("ADODB.Co开发者_StackOverflowmmand")    
    cmd.ActiveConnection = cnxn    
    cmd.CommandText = "<LDAP://" & domainNc & ">;(&(objectCategory=user)(objectClass=user)    (employeeNumber=" & ID & "));distinguishedName;subtree"
    WScript.Echo cmd.CommandText
    cmd.Properties("Page Size") = 100    
    cmd.Properties("Timeout") = 30    
    cmd.Properties("Cache Results") = False    
    WScript.Echo "setting cmd.properties"
    Dim rs
    Set rs = cmd.Execute
    WScript.Echo "rs object set"
    While Not rs.eof
        On Error Resume Next
        WScript.Echo "while loop start"
        Wscript.Echo rs.fields("distinguishedName".Value)
        rs.MoveNext
        If (Err.Number <> 0) Then       
     WScript.Echo vbCrLf& "Error # "& CStr(Err.Number)& " "& Err.Description
        Else
      On Error GoTo 0
        End If 
    Wend
    WScript.Echo "while loop end"
    rs.close    
    WScript.Echo "rs object closed"
    cnxn.Close    
    Set rs = Nothing    
    Set cmd = Nothing    
    Set cnxn = Nothing 
    End Function

Here's some vbscript that will find all users with bID=FooVal and write their DN out

Function GetUsers(domainNc, bIdVal)
    Dim cnxn
    Set cnxn = WScript.CreateObject("ADODB.Connection")
    cnxn.Provider = "ADsDSOObject"
    cnxn.Open "Active Directory Provider"

    Dim cmd
    Set cmd = WScript.CreateObject("ADODB.Command")
    cmd.ActiveConnection = cnxn

    cmd.CommandText = "<LDAP://" & domainNc & ">;(&(objectCass=user)(objectCategory=person)(bid=" & bidVal & "));distinguishedName;subtree"
    cmd.Properties("Page Size") = 100
    cmd.Properties("Timeout") = 30
    cmd.Properties("Cache Results") = False

    Dim rs
    Set rs = cmd.Execute

    While Not rs.eof 
        Wscript.Echo rs.fields("distinguishedName").Value

        rs.MoveNext
    Wend 

    rs.close
    cnxn.Close

    Set rs = Nothing
    Set cmd = Nothing
    Set cnxn = Nothing 
End Function

继续阅读:active-directory

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9