Improve company productivity with a Business Account.Sign Up

x
?
Solved

Need help with removing data from an LDIFde export of users

Posted on 2008-06-09
13
1 solution
Medium Priority
?
874 Views
Last Modified: 2012-06-27
Hi everyone,
Ok so I've exported a group of users from a server to be imported on another new server. When I export the users all their information is exported fine, however at the end of each entry I get a few additional lines of data starting with dsCorePropagationData
example:
dsCorePropagationData:2498416498464

After working on the import of the users that kept failing I realized that it was these lines of data that were causing the import to fail. After removing the lines the user entry would import without a problem.

Here is the command I'm using to export  the users.

Ldifde f dndousers.ldf s nstd-admin d "OU=dndousers, dc=initech,dc=org" -p subtree -r
"(&(objectCategory=person)(objectClass=User)(givenname=*))" -o "badPasswordTime,badPwdCount,lastLogoff,lastLogon,logonCount,
memberOf,objectGUID,objectSid,primaryGroupID,pwdLastSet,sAMAccountType"

How do I get this to export these users without including this dsCorePropagationData?

Let me know if you know or if you have any further questions.
0
Comment
Question by:nstd-sts
  • 6
  • 3
9 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 21747339
I'm not sure all of those attributes can be migrated in this manner.  That attribute (dsCorePropagationData) seems to be a System flag for data that needs to replicate to a Global Catalog.  I would imagine some of the attributes you are attempting to capture are in that set.  

Have you attempted to move some users with ADMT?  I think this would be a cleaner method.


0
 
LVL 1

Author Comment

by:nstd-sts
ID: 21750641
ADMT doesn't work for what we are doing, we aren't moving users we are just copying them and to totally different networks that are not connected in anyway.

All the specific attributes in that ldifde command are the ones being ignored and not exported, I've done this same method with new user accounts for testing and that extra information isn't included in the export so I'm guessing it is something thats added due to all the extra information thats attached to these user accounts, I just don't know which one.
0
 
LVL 1

Author Comment

by:nstd-sts
ID: 21751304
Here is an example of what I'm getting, I understand now that the problem is being caused because I have three entries that are the same, I just need to know how to either stop them from being exported or a good way of removing them from my output. It was fine when I had to move 16 users, now I'm up against copying 250 and I can't manually go through and remove the entries.

> dSCorePropagationData: 20040917192502.0Z
> dSCorePropagationData: 20040917192502.0Z
> dSCorePropagationData: 20040917192502.0Z
> dSCorePropagationData: 16010108151056.0Z
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Learn More
 
LVL 51

Expert Comment

by:Netman66
ID: 21751326
I would think it's the password information (not the password itself) - like last set, bad password count, etc.

Since those are somewhat urgent replication attributes they would likely cause the dsCorePropogationData to be set.

Try only the user account first to see if that is successful.
0
 
LVL 1

Author Comment

by:nstd-sts
ID: 21752412
Those attributes are ignored in the command with the -o
0
 
LVL 51

Expert Comment

by:Netman66
ID: 21752636
Funny, I looked at that a number of times and only realized after your last post that the command was for Export...  wow...I sure need some glasses.


Try exporting using -l with specific attributes (like "cn,givenName,objectclass,samAccountName") instead of the -o switch to omit.

0
 
LVL 1

Accepted Solution

by:
nstd-sts earned 0 total points
ID: 21752845
Ldifde f dndousers.ldf s bolton01 d "OU=dndousers, dc=initech,dc=org" -p subtree -r
"(&(objectCategory=person)(objectClass=User)(givenname=*))" -o "badPasswordTime,badPwdCount,lastLogoff,lastLogon,logonCount,
memberOf,objectGUID,objectSid,primaryGroupID,pwdLastSet,sAMAccountType"

There is the command I use to export, if you think I can use a -l one better then write me up the correct command and if it works you win! lol

Thanks for you help.
0
 
LVL 1

Author Comment

by:nstd-sts
ID: 21867947
finished
0
 
LVL 1

Author Comment

by:nstd-sts
ID: 21868372
Basically I'm just going to use a fine and replace to take out all the data that is causing the problems.
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Learn More
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Security updates for Microsoft End of Life operating systems..
Article by: Andrew
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Top 10 Ways to Secure Your File Servers
Article by: Naveen
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
Configuring Backup Exec 2012 for VMware Image Level Backups
Video by: Rodney
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Backup Exec 2012 Configuring Multiple Backup Folders on One USB Drive
Video by: Rodney
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Advertise Here

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Advertise Here