How can I list the Active Directory user attributes from a linux computer?

linux active-directory attributes

Solution 1:

You can use ldapsearch to query an AD Server. For example, the following query will displya all attributes of all the users in the domain:

ldapsearch   -x -h adserver.domain.int -D "[email protected]" -W -b "cn=users,dc=domain,dc=int"

Command options explained:

  • -x use simple authentication (as opposed to SASL)
  • -h your AD server
  • -D the DN to bind to the directory. In other words, the user you are authenticating with.
  • -W Prompt for the password. The password should match what is in your directory for the the binddn (-D). Mutually exclusive from -w.
  • -b The starting point for the search

More info: http://www.openldap.org/software/man.cgi?query=ldapsearch&apropos=0&sektion=0&manpath=OpenLDAP+2.0-Release&format=html

Solution 2:

A much simpler command is

id myuser@MYDOMAIN

For this command to work, your machine must have already joined the domain; you can verify that via

realm list

Related

Specify route to an interface in Windows cmd
Deprecated: Function create_function() is deprecated [duplicate]
How to destroy/delete/unset a variable value in Ansible?
Configure Tomcat to use a different temp directory for file uploads
search for just folders in windows explorer
Git is not adding some files
Configuring the pg_hba.conf file to allow access from other servers to the database
how to forward dns alias to hostname:port? [duplicate]
When is the right time to introduce high availability for web site?
Stopping the WinPcap Packet capture service
How do you get the minimum and maximum memory allocation of a SQL instance using T-SQL?
How can I tell when a given user's password will expire?