Solved

LDIFDE Import AD Account and Set Password

Posted on 2011-03-14
4
2,369 Views
Last Modified: 2012-05-11
Hello I am trying to use LDIFDE to import a user account and set the user's password. I am sucessful in importing the user but I do not understand the syntax for setting the user's password in the add step.

Here is what I am using to sucessfully create the user account. (account is created with blank password and is flagged as disabled due to no password)

--------------------------------------------------------------------------------

dn: CN=user0234567,OU=2010,OU=Students,OU=Customers,DC=mydomain,DC=edu
changetype: add
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
cn: user0234567
sn: Doe
description: 123456
givenName: John
initials: E
displayName: John Doe
name: user0123456
accountExpires: 129472308000000000
sAMAccountName: 0123456
userPrincipalName: user0123456@witcc.edu
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=mydomain,DC=edu

--------------------------------------------------------------------------------------


I would like to have the user account enabled and set the password to a static string of something like     USER12345

Can someone tell me what I need to add to this ldf file to accomplish this?

thank you!
0
Comment
Question by:miteldatanet
  • 2
  • 2
4 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35133209
You have this Question in two Zones... Are you using AD 2003 or AD 2008, and what is the OS you are using to do the import?
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 35133283
In your Example above:

dn: CN=user0234567,OU=2010,OU=Students,OU=Customers,DC=mydomain,DC=edu
changetype: modify
replace: unicodePwd
unicodePwd::IgBuAGUAdwBQAGEAcwBzAHcAbwByAGQAIgA=

Source: http://support.microsoft.com/kb/263991

If memory serves, you have to create the account first, then set the password, then undisable it.  The item for lockout is, if memory serves, useraccountcontrol, but I cannot remember how to change it from disabled to enabled.

DrUltima
0
 

Accepted Solution

by:
miteldatanet earned 0 total points
ID: 35343893
We ended up using DSADD and a CSV to accomplish what we need.
0
 

Author Closing Comment

by:miteldatanet
ID: 35372965
could not get ldefide to import password.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now