Skip to content

Windows Server 2008 – How to use ldife and csvde – The Visual Guide


Here’s a crib sheet to getting ldifde to work.  LDIF is the LDAP Data Interchange Format, to perform batch file imports or exports for directories – which are fantastic tools in the hands of an attacker.  They can download all the Active Directory Database🙂

Step 1 – Export ldifde

ldifde -f export.ldf -v

export-f sets the file name,

-v is verbose


Step 2 – Use Notepad

Open export.ldf

export notepad

That was easy.

Notice how the attacker would now have the minimum password length, the password history length and lockout threshold.  This is all critical information.


Step 3 – Import ldifde

ldifde -i -f import.ldf -v

ldf import

-i = import (export is the default)

-f = file to import the data into

-v = verbose


Open import with notepad.

Batch updates couldn’t get easier.


How to use CSVDE command

Defaults are to EXPORT data


csv export

Use Notepad to open EXPORTCSV.CSV

export csv


To Import the current domain

csvde -i -f IMPORTCSV.CSV

-i = import

-f  = sets the file name to import.csv

Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: