Windows Server 2008 – How to use LDP Query Tool – The Visual Guide
Step 1 – Start the ldp.exe tool
Start > Run > ldp.exe
Step 2 – Connect & Configure
Connection > Connect
Enter Domain Controller name
Clear Connectionless check box if it’s selected > OK
Step 3 – LDP Results without a logon
LDP will display lots of information, without a password.
Notice that the ldap service is “Teaching.ac.uk” – we’ll use this later.
Step 4 – Connect and then BIND
The second option is that we 1. Connect, 2. Bind (use an Administrator Id and password).
Bind as currently logged on user… or not…
Bind with credentials
Notice the Domain is in DNS syntax.
Ldp will report the bind as “authenticated”
Step 5 – The Filter Box
Browse > Search
Step6 – Search for users
Base Dn: DC=teaching, DC=ac, DC=uk
Set the Scope to Subtree
Sarumans user account
Property flag descriptions
- SCRIPT – The logon script will be run.
- ACCOUNTDISABLE – The user account is disabled.
- HOMEDIR_REQUIRED – The home folder is required.
- PASSWD_NOTREQD – No password is required.
Step 7 – To search for user OR office
ldp uses a strange OR syntax – the or term comes at the start. (| (search 1) (search s2))
Filter: (| (objectClass=user) (description=*office) )
Step 8 – To search for user AND office
Filter: (& (objectClass=user) (description=*office*) )
The only weird thing is working out the operators, which come before the search criteria.
Step 9 – The hunt for Gandalf.
Lets go find Gandalf….
(| (cn=Gandalf*) (cn=Peter) )
How to search for 3 common names…
Phew…. quite a tool.