Skip to content

Windows Server 2008 – How to use ldife and csvde – The Visual Guide

07/10/2013

Here’s a crib sheet to getting ldifde to work.  LDIF is the LDAP Data Interchange Format, to perform batch file imports or exports for directories – which are fantastic tools in the hands of an attacker.  They can download all the Active Directory Database 🙂

Step 1 – Export ldifde

ldifde -f export.ldf -v

export-f sets the file name,

-v is verbose

*****

Step 2 – Use Notepad

Open export.ldf

export notepad

That was easy.

Notice how the attacker would now have the minimum password length, the password history length and lockout threshold.  This is all critical information.

*****

Step 3 – Import ldifde

ldifde -i -f import.ldf -v

ldf import

-i = import (export is the default)

-f = file to import the data into

-v = verbose

****

Open import with notepad.

Batch updates couldn’t get easier.

****

How to use CSVDE command

Defaults are to EXPORT data

csvde -f EXPORTCSV.CSV

csv export

Use Notepad to open EXPORTCSV.CSV

export csv

******

To Import the current domain

csvde -i -f IMPORTCSV.CSV

-i = import

-f  = sets the file name to import.csv

Advertisements
Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: