Tool

Main Communities Menu

Szukaj

Shameless Plugs

Most Popular

Last viewed:

User login

tool

Reads:

6127

Score:

Comments:

0 dsbedit

Author Info

26 February 2010 - 10:00am
Submitted by: jimc

Author Blog

Author Profile

Tags

eDirectory Active Directory Groups Importing-Exporting / ICE/ LDIF LDAP User Management

Tags Map

(View Disclaimer)

download url:

http://www.champwilde.f9.co.uk/idmphp/dsbedit/dsbedit.zip

license:

University of Illinois/NCSA Open Source

home page url:

http://www.champwilde.f9.co.uk/idmphp/dsbedit/index.html

These scripts were written for an eDirectory implementation, and some features will only be useful on that platform.

Dsbedit.php
The "home directory" feature will only be useful on Novell/eDirectory. Otherwise this script should be useful on any LDAP platform. We use it principally in conjunction with data moves from server to server, and so the home directory functionality is important. It also provides a simple and easy to use means of manipulating LDAP directories without the complexities of more powerful and sophisticated tools.
To use it a csv file containing two columns, one the cn attribute and the other A N other LDAP attribute is placed on the web server, and the application matches unique CNs and modifies the other attribute with the provided value. Duplicated CNs are skipped.

Dsgrpcrt.php
This script will probably only be useful on Novell/eDirectory as written, but could be modified for other platforms. Its designed to help with large organisation changes. A csv file contains a list of groups and usernames against each group. On running it the groups are created unless they already exist, and users are made members of the groups. Both the groupMembership and securityEquals attributes are populated for each user, and the member and equivalentToMe attributes are populated for each group. The script handles all the four attributes that must be changed to make eDirectory group membershp fully functional.

Adgrpcrt.php
This script is very similar to dsgrpcrt above, but its intended
to work with MS AD groups and memberships, and will probably only be of
use with AD. The sAMAccountName attribute (pre Windows 2000 name) is
used to match objects, and the CN of the object can be set separately
from the source text file. In accordance with AD practice the group
membership is set only on the group object using the member attribute.

Disclaimer: As with everything else at Cool Solutions, this content is definitely not supported by Novell (so don't even think of calling Support if you try something and it blows up).

It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test, test, test before you do anything drastic with it.

User Comments

Be the first to comment! To leave a comment you need to Login or Register
6127 reads

Novell

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy