【ldap】ldap系列-java对ActiveDirectory的增删改查,包含加密密码字段:unicodePwd

最新推荐文章于 2024-07-14 03:44:28 发布
最新推荐文章于 2024-07-14 03:44:28 发布
阅读量726 收藏 2
点赞数
分类专栏: ldap 文章标签: ldap openldap activedirectory 运维 运维开发
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/renliangli/article/details/114694283
版权
这篇博客详细介绍了如何使用Java进行ldap系列操作,特别是针对微软ActiveDirectory的增删改查,并特别讨论了处理加密密码字段`unicodePwd`的方法。
摘要由CSDN通过智能技术生成 
公司有几千号员工,使用ldap管理人员账号,开发了一套ad域的管理系统,方便人员入离职账号的统一管理、运维账号统一管理、单点登录管理、现将经生产环境运行稳定的代码放出,供大家参考,网上资料太少了,很多代码都用不了,基本一步一坑,

一些高级功能,可以加qq群:669293878 或微信:codearch讨论:例如ad域密码(unicodePwd)修改、查询翻页,对ad域的jdk免证书登录等。

本章是java对微软ActiveDirectory的增删改查操作,包含unicodePwd

package com.ad.ldaps;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;
import java.util.Properties;

import javax.naming.Context;
import javax.naming.NameClassPair;
import javax.naming.NamingEnumeration;
import javax.naming.NamingException;
import javax.naming.directory.Attribute;
import javax.naming.directory.Attributes;
import javax.naming.directory.BasicAttribute;
import javax.naming.directory.BasicAttributes;
import javax.naming.directory.DirContext;
import javax.naming.directory.ModificationItem;
import javax.naming.directory.SearchControls;
import javax.naming.directory.SearchResult;
import javax.naming.ldap.InitialLdapContext;
import javax.naming.ldap.LdapContext;

/**
 * @Description:对AD域用户的增删改查操作
 * @author erek
 * @date 2018-07-03
 */
public class AddUser {
    //DirContext dc = null;
	LdapContext dc = null;
    String root = "ou=people,dc=domain,dc=com"; // LDAP的根节点的DC
    
    //生产环境
    final static String LDAPURL = "ldap://rwdc.sh.com:636";
    final static String USER_NAME = "cn=it,ou=people,dc=domain,dc=com";
    final static String USER_PWD = "nsexx2019";
    final static String DEFAULT_PWD = "\"Goodnse@\"";//ad新建人员账号默认密码
   
    
    //测试环境
//    final static String LDAPURL = "ldap://10.100.52.237:636";
//    final static String USER_NAME = "cn=administrator,cn=Users,dc=domain,dc=com";
//    final static String USER_PWD = "123@abc";
    
    /**
     * @Description:程序入口
     * @author 
     * @throws Exception 
     * @date 2019-07-03
     */
    public static void main(String[] args) throws Exception {
    	
    	AddUser utils = new AddUser();
    	utils.certinit();
    	String userName = "myh";
    	
    	//0.用户连接
    	//utils.init();
    	
    	//6.删除用户
        //utils.delete(userName);
        
    	//1.添加用户
    	//utils.add(userName);
    	//7.修改密码失败
    	String oldPwd = "GoodSense@";
    	String newPwd = "123456@sensetime";
        //utils.updatePWD(userName,oldPwd,newPwd);
    	
        //2.查找组织单位下的所有用户
        //String base = "ou=robots,dc=domain,dc=sensetime,dc=com";
        //base = utils.root;
    	//utils.searchInformation(base); 
    	
    	//3.查找组织单位下的某个用户
        //SearchResult sr = utils.searchByUserName(utils.root, "liliang");
        //System.out.println(sr.getName());

        //4.修改用户属性
        //utils.modifyInformation("testzhu", "M1380005");
        //utils.updatePerson("testzhu");
    	   	
    	//5.重命名用户
        //utils.renameEntry("CN=testzhu,OU=maad,DC=case,DC=com", "CN=testzzz,OU=maad,DC=case,DC=com");
        
    	
    	String[] s = {"lisi"};
    	for(String u : s) {
    		utils.searchByUserNameUidNumber(utils.root,u);
    	}
    	
    	
    	//utils.searchByUserNameUidNumber(utils.root,"suzehua");
    	
    	
    	//3.查找组织单位下的某个用户
        //SearchResult sr = utils.searchByUserName(utils.root, "testaaa");
        //System.out.println(sr.getName());

        //utils.enablePerson("testzhu");
        //utils.searchInformation(utils.root);
        
        //获取最大uidnumber
        //int uidnumber = utils.getMaxUid();
        //System.out.println("最大uidnumber:"+uidnumber);
        
        utils.close();
    }
    
    

    /**
     * @Description:使用非安全方式登录
     * @author erek
     * @date 2018-07-03
     */
    public void init() {
        Properties env = new Properties();
        String adminName = "cn=administrator,cn=Users,dc=domain,dc=sensetime,dc=com";// username@domain
		String adminPassword = "123@abc";// password
		String ldapURL = "ldap://10.100.52.237:389";// ip:port
        env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
        env.put(Context.SECURITY_AUTHENTICATION, "simple");//LDAP访问安全级别:"none","simple","strong"
        env.put(Context.SECURITY_PRINCIPAL, adminName);
        env.put(Context.SECURITY_CREDENTIALS, adminPassword);
        env.put(Context.PROVIDER_URL, ldapURL);
        try {
            dc = new InitialLdapContext(env, null);
            System.out.println("AD域帐户密码认证成功");
        } catch (Exception e) {
            System.out.println("AD域帐户密码认证失败");
            e.printStackTrace();
        }
    }
    
    /**
     * @Description:使用SSl的方式登录
     * @author erek
     * @date 2018-07-03
     */
    public void certinit() {
    	
        Properties env = new Properties();
        //cn=administrator,cn=Users,dc=domain,dc=sensetime,dc=com
        String adminName = "cn=administrator,cn=Users,dc=domain,dc=sensetime,dc=com";
        //String adminName = "cn=erek,ou=people,dc=domain,dc=sensetime,dc=com";
        
		env.put(Context.AUTHORITATIVE, "true");
        env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
        //使用ldaps 登录时候访问安全级别一定要设置为simple,否则修改密码相关失败。
        env.put(Context.SECURITY_AUTHENTICATION, "simple");//LDAP访问安全级别:"none","simple","strong"
        env.put(Context.SECURITY_PRINCIPAL, USER_NAME);
        env.put(Context.SECURITY_CREDENTIALS, USER_PWD);
        env.put(Context.PROVIDER_URL, LDAPURL);
        env.put(Context.SECURITY_PROTOCOL, "ssl");
        //免证书登录属性设置,这个很关键
        env.put("java.naming.ldap.factory.socket","org.utils.ad.LTSSSLSocketFactory");
        //env.put("com.sun.jndi.ldap.object.disableEndpointIdentification", true);
        //System.setProperty("com.sun.jndi.ldap.object.disableEndpointIdentification", true);
        
        //env.put(key, value)
        //env.setProperty(Context.URL_PKG_PREFIXES, "com.sun.jndi.url");  
        //env.setProperty(Context.REFERRAL, "ignore");  
        
        //以下三项为有证书方式连接
//        String keystore = "C:\\Program Files\\Java\\jdk1.8.0_202\\jre\\lib\\security\\cacerts";
//        System.setProperty("javax.net.ssl.trustStore", keystore);  
//        System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
//        
        
     // Create connection controls to use
        
        try {
            dc = new InitialLdapContext(env, null);
            System.out.println("AD域ssl身份认证成功");
        } catch (Exception e) {
            System.out.println("AD域ssl身份认证失败");
            e.printStackTrace();
        }
    }
    
    
    
    /**
     * @Description:关闭AD域服务连接
     * @author erek
     * @date 2018-07-03
     */
    public void close() {
        if (dc != null) {
            try {
                dc.close();
                System.out.println("AD域服务连接关闭");
            } catch (NamingException e) {
                System.out.println("NamingException in close():" + e);
            }
        }
    }
    
    /**
     * @Description:新增AD域用户
     * @author erek
     * @date 2018-07-03
     */
    public void add(String newUserName) {
        try {
        	
        	String newQuotedPassword = "\"GoodSense@\"";
        	byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE");
        	//"unicodePwd: "+newUnicodePassword,
        	
        	BasicAttribute objclassSet = new BasicAttribute("objectclass");     
        	objclassSet.add("top");
        	objclassSet.add("person");
        	objclassSet.add("organizationalPerson");
        	objclassSet.add("user");

        	
        	
            Attributes attrs = new BasicAttributes(true);
            //attrs.put("objectClass", "user");
            attrs.put(objclassSet);//将objectclass加到属性集合中
            attrs.put("samAccountName", newUserName);
            attrs.put("userPrincipalName", newUserName + "@sensetime.com");
	        attrs.put("userAccountControl","512"); 
            attrs.put("unicodePwd",newUnicodePassword);
	        attrs.put("telephoneNumber","15880888368");
	        attrs.put("displayName", "显示名称");
	        attrs.put("description","描述");
	        attrs.put("mail",newUserName + "@sensetime.com");
	        attrs.put("givenName","名字");
	        attrs.put("name","newUserName");
	        attrs.put("cn", newUserName);
	        attrs.put("sn", newUserName);
	        //attrs.put("uidnumber", getMaxUid());
            
            dc.createSubcontext("cn=" + newUserName + "," + root, attrs);
            System.out.println("新增AD域用户成功:" + newUserName);
        } catch (Exception e) {
            e.printStackTrace();
            System.out.println("新增AD域用户失败:" + newUserName);
        }
    }

    /**
     * @Description:删除AD域用户
     * @author erek
     * @date 2018-07-03
     */
    public void delete(String userName) {
    	String dn = "cn="+userName+","+ root;
        try {
        	
            dc.destroySubcontext("cn="+userName+","+ root);
            System.out.println("删除AD域用户成功:" + dn);
        } catch (Exception e) {
            System.out.println("删除AD域用户失败:" + dn);
            e.printStackTrace();
        }
    }

    /**
     * @Description:重命名AD域用户
     * @author erek
     * @date 2018-07-03
     */
    public boolean renameEntry(String oldDN, String newDN) {
        try {
            dc.rename(oldDN, newDN);
            System.out.println("重命名AD域用户成功");
            return true;
        } catch (NamingException ne) {
            System.out.println("重命名AD域用户失败");
            ne.printStackTrace();
            return false;
        }
    }    
    
    /**
     * @Description:修改AD域用户属性
     * @author erek
     * @date 2018-07-03
     */
    public void updatePerson(String dn) {
    	
    	Person person = new Person();		
		person.setCn(dn);
        person.setSAMAccountName(person.getCn());
        person.setName(person.getCn());
        person.setSn("3");
        person.setUserAccountControl("66048");
        person.setTelephoneNumber("18999999958");
        person.setGivenName("33");
        person.setDescription("3333");
        person.setDisplayName("333");
        person.setMail("dn@case.com");
        person.setUserPassword("Root.123");
    	
        if (person == null || person.getCn() == null 
                || person.getCn().length() <= 0) {
            return;
        }
        
        //修改的属性
        List<ModificationItem> mList = new ArrayList<ModificationItem>();
        //不能修改
        //mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("userAccountControl", person.getUserAccountControl())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("sn",person.getSn())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("telephoneNumber", person.getTelephoneNumber())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("mail", person.getMail())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("givenName", person.getGivenName())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("displayName", person.getDisplayName())));
        mList.add(new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("description", person.getDescription())));
        
        if (mList.size() > 0) {
        	
        	//集合转为数组
            ModificationItem[] mArray = new ModificationItem[mList.size()];
            for (int i = 0; i < mList.size(); i++) {
                mArray[i] = mList.get(i);
            }
            try {
				dc.modifyAttributes("cn="+dn + "," + root, mArray);
				System.out.println("修改AD域用户属性成功");
			} catch (NamingException e) {
				System.err.println("修改AD域用户属性失败");
				e.printStackTrace();
			}
        }
        
        
    }
    
    public void StringToAscc8(String args) {
        ArrayList<String> messageList = new ArrayList<String>();
        String text = "abc";
        byte[] bytes = text.getBytes();
        StringBuilder binary = new StringBuilder();
        for (byte b : bytes) {
            int val = b;
            for (int i = 0; i < 8; i++) {
                binary.append((val & 128) == 0 ? 0 : 1);
                val <<= 1;
            }
            binary.append(' ');
        }
        messageList.add(binary.toString());

        System.out.println(Arrays.toString(bytes));

        for (String object : messageList) {
            System.out.println("'" + text + "' to binary: " + object);
        }

        // this part below to help you to save 2-bit binary converted in int
        // arraylist to store string
        ArrayList<String> stringList = new ArrayList<String>();
        for (int i = 0; i < text.length(); i++) {
            stringList.add(messageList.get(0).split(" ")[i]);
        }
        // arraylist to store int converted
        ArrayList<Integer> intList = new ArrayList<Integer>();
        for (String str : stringList) {
            for (int i = 0; i < str.length(); i += 2) {
                intList.add(Integer.parseInt(str.substring(i, i + 2), 2));
                System.out.print(str.substring(i, i + 2) + " ");
            }

        }
        System.out.println();
        // nowretrieve int in arraylist to convert in 2-binary if you wont
        for (Integer integer : intList) {
            System.out.print(integer + "  ");
        }
        
        
    }
    
    /**
     * @Description:修改AD域用户密码
     * @param dn     用户
     * @param oldPwd 旧密码
     * @param newPwd 新密码
     * @author erek
     * @date 2019-07-03
     */
    public void updatePWD(String dn,String oldPwd,String newPwd) {
    	
    	Person person = new Person();	
    	person.setCn(dn);
    	person.setUserPassword(newPwd);
    	String sOldPassword =oldPwd;
        
    	if (person == null || person.getCn() == null 
                || person.getCn().length() <= 0) {
            return;
        }
        
        try {
        	
        	String oldQuotedPassword = "\"" + sOldPassword + "\"";  
            byte[] oldUnicodePassword = oldQuotedPassword.getBytes("UTF-16LE"); 
        	
        	String newQuotedPassword = "\"" + person.getUserPassword() + "\"";
    		byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE");
        	
        	ModificationItem[] mods = new ModificationItem[2];
        	//mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("unicodePwd", newUnicodePassword));
    		mods[0] = new ModificationItem(DirContext.REMOVE_ATTRIBUTE, new BasicAttribute("unicodePwd", oldUnicodePassword));  //userPassword
            mods[1] = new ModificationItem(DirContext.ADD_ATTRIBUTE, new BasicAttribute("unicodePwd", newUnicodePassword));  
//            mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,
//					new BasicAttribute("unicodePwd", newUnicodePassword));
//        	
            //dc.bind(name, obj);    		
    		dc.modifyAttributes("cn="+dn + "," + root, mods);
            //dc.modifyAttributes("cn="+dn + ",ou=people,dc=domain,dc=sensetime,dc=com", mods);
    		System.out.println("修改密码成功!");
        }catch(Exception e) {
			e.printStackTrace();
			System.out.println("修改密码失败!"+e.toString());
        }
    }
    
    /**
     * @Description:修改AD域用户属性
     * @author erek
     * @date 2018-07-03
     */
    public void enablePerson(String dn) {
    	/**
    	Person person = new Person();	
    	person.setCn("testzhu");
        person.setUserAccountControl("66048");
        
    	if (person == null || person.getCn() == null 
                || person.getCn().length() <= 0) {
            return;
        }
        
        try {
    		ModificationItem[] mods = new ModificationItem[1]; 
            mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,new BasicAttribute("userAccountControl", person.getUserAccountControl()));
    		    		
    		dc.modifyAttributes("cn="+dn + "," + root, mods);
    		System.out.println("启用用户成功!");
        }catch(Exception e) {
			e.printStackTrace();
        }
        */
    }

    /**
     * @Description:搜索指定节点下的所有AD域用户
     * @author erek
     * @date 2018-07-03
     */
    public void searchInformation(String searchBase) {
    	//要获取的对象属性

    	String[] attributeNames = { "memberOf", "uidNumber","name","objectClass"};
        
    	try {
            SearchControls searchCtls = new SearchControls();
            searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
            String searchFilter = "objectClass=user";
            String returnedAtts[] = { "memberOf" };
            searchCtls.setReturningAttributes(returnedAtts);
            
            NamingEnumeration<?> answer = dc.search(searchBase, searchFilter, searchCtls);
            //NamingEnumeration<SearchResult> answer = dc.search(searchBase, searchFilter, searchCtls);
            while (answer.hasMoreElements()) {
                //SearchResult sr = (SearchResult) answer.next();
            	//System.out.println(sr.getName());
                NameClassPair ncp = (NameClassPair) answer.next();
                String ncpName = ncp.getName();
                // 对特殊字符的DN跳过
                //if ((ncpName + "," + searchBase).indexOf("\"") != -1 || (ncpName + "," + searchBase).indexOf("/") != -1) {continue;}
                Attributes atts = dc.getAttributes(ncpName + "," + searchBase, attributeNames);
                //获取对象属性
                Attribute uidnumber = atts.get("uidNumber");
                if(uidnumber!=null) {
                	String value = (String) uidnumber.get();
                	System.out.println(ncpName+"|"+value+"uidNumber:"+uidnumber.toString()); 
                }
                
                /**
                Attribute objectClassAuttribute = atts.get("objectClass");
                if(objectClassAuttribute != null) {
                	
   				 	if (objectClassAuttribute.toString().indexOf("user") != -1) {
   					 //获取用户是user
   					 System.out.println(atts+ncpName + "," + searchBase);
   				 	}
                }
                */

                           
            
                
            }
        } catch (Exception e) {
            e.printStackTrace();
        }
    }

    /**
     * @Description:指定搜索节点搜索指定域用户
     * @author erek
     * @date 2018-07-03
     */
    public SearchResult searchByUserName(String searchBase, String userName) {
        SearchControls searchCtls = new SearchControls();
        searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
        String searchFilter = "cn=" + userName;
        String returnedAtts[] = { "memberOf" }; //定制返回属性
        searchCtls.setReturningAttributes(returnedAtts); //设置返回属性集
        try {
            NamingEnumeration<SearchResult> answer = dc.search(searchBase, searchFilter, searchCtls);
            
            return answer.next();
        } catch (Exception e) {
            System.err.println("指定搜索节点搜索指定域用户失败");
            e.printStackTrace();
        }
        return null;
    }
    
    
    /**
     * @Description:指定搜索节点搜索指定域用户
     * @author erek
     * @throws Exception 
     * @date 2018-07-03
     */
    public void searchByUserNameUidNumber(String searchBase, String userName) throws Exception {
        SearchControls searchCtls = new SearchControls();
        searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
        String searchFilter = "cn=" + userName;
        String returnedAtts[] = { "memberOf" }; //定制返回属性
        searchCtls.setReturningAttributes(returnedAtts); //设置返回属性集
        String[] attributeNames = { "memberOf", "uidNumber","name","objectClass"};
        
		/*
		 * try { NamingEnumeration<SearchResult> answer = dc.search(searchBase,
		 * searchFilter, searchCtls);
		 * 
		 * return answer.next(); } catch (Exception e) {
		 * System.err.println("指定搜索节点搜索指定域用户失败"); e.printStackTrace(); }
		 */
        
        NamingEnumeration<?> answer = dc.search(searchBase, searchFilter, searchCtls);
        //NamingEnumeration<SearchResult> answer = dc.search(searchBase, searchFilter, searchCtls);
        while (answer.hasMoreElements()) {
            //SearchResult sr = (SearchResult) answer.next();
        	//System.out.println(sr.getName());
            NameClassPair ncp = (NameClassPair) answer.next();
            String ncpName = ncp.getName();
            // 对特殊字符的DN跳过
            //if ((ncpName + "," + searchBase).indexOf("\"") != -1 || (ncpName + "," + searchBase).indexOf("/") != -1) {continue;}
            Attributes atts = dc.getAttributes(ncpName + "," + searchBase, attributeNames);
            //获取对象属性
            
            Attribute uidnumber = atts.get("uidNumber");
            /**
            if(uidnumber!=null) {
            	String value = (String) uidnumber.get();
            	System.out.println(ncpName+" "+uidnumber.toString()); 
            }
            */
            
            if(uidnumber!=null) {
            	String value = (String) uidnumber.get();
            	//System.out.println(value+"uidNumber:"+uidnumber.toString());
            	int uidn = Integer.valueOf(value);
            	System.out.println(ncpName+" "+uidn); 
            }
            
            /**
            Attribute objectClassAuttribute = atts.get("objectClass");
            if(objectClassAuttribute != null) {
            	
				 	if (objectClassAuttribute.toString().indexOf("user") != -1) {
					 //获取用户是user
					 System.out.println(atts+ncpName + "," + searchBase);
				 	}
            }
            */

                       
        
            
        }
        
    }
    
    
    public  int getMaxUid() {
    	int max_uid = 10000;
    	int count = 0;
    	String searchBase = "ou=robots,dc=domain,dc=sensetime,dc=com";
    	
    	String searchPeopleBase = "ou=people,dc=domain,dc=sensetime,dc=com";
    	
    	//要获取的对象属性

    	String[] attributeNames = {"uidNumber"};
        
    	try {
            SearchControls searchCtls = new SearchControls();
            searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
            String searchFilter = "cn=*";
            String returnedAtts[] = { "memberOf" };
            searchCtls.setReturningAttributes(returnedAtts);
            
            //1、先查询robots 最大uidNumber
            
            NamingEnumeration<?> answer = dc.search(searchBase, searchFilter, null);
            while (answer.hasMoreElements()) {
            	count++;
            	System.out.println("searchBase:"+count);
                //SearchResult sr = (SearchResult) answer.next();
            	//System.out.println(sr.getName());
                NameClassPair ncp = (NameClassPair) answer.next();
                String ncpName = ncp.getName();
                // 对特殊字符的DN跳过
                //if ((ncpName + "," + searchBase).indexOf("\"") != -1 || (ncpName + "," + searchBase).indexOf("/") != -1) {continue;}
                Attributes atts = dc.getAttributes(ncpName + "," + searchBase, attributeNames);
                //获取对象属性
                Attribute uidnumber = atts.get("uidNumber");
                if(uidnumber!=null) {
                	String value = (String) uidnumber.get();
                	//System.out.println(value+"uidNumber:"+uidnumber.toString());
                	int uidn = Integer.valueOf(value);
                	if(uidn >= 22145) {
                		System.out.println(uidn);
                	}
                	if(uidn > max_uid) {
                		max_uid = uidn;
                	}
                }
                
            }
            
            
          //2、查询people 最大uidNumber
            NamingEnumeration<?> answer1 = dc.search(searchPeopleBase, searchFilter, null);
            while (answer1.hasMoreElements()) {
            	count++;
                NameClassPair ncp = (NameClassPair) answer1.next();
                String ncpName = ncp.getName();
                // 对特殊字符的DN跳过
                //if ((ncpName + "," + searchBase).indexOf("\"") != -1 || (ncpName + "," + searchBase).indexOf("/") != -1) {continue;}
                Attributes atts = dc.getAttributes(ncpName + "," + searchPeopleBase, attributeNames);
                //获取对象属性
                Attribute uidnumber = atts.get("uidNumber");
                if(uidnumber!=null) {
                	String value = (String) uidnumber.get();
                	//System.out.println(value+"uidNumber:"+uidnumber.toString());
                	int uidn = Integer.valueOf(value);
                	if(uidn >= 22145) {
                		System.out.println(uidn);
                	}
                	if(uidn > max_uid) {
                		max_uid = uidn;
                	}
                }
                
            }
            
            System.out.println("共查询账号数:"+count);
            
        } catch (Exception e) {
            e.printStackTrace();
        }
    
    	return max_uid+1;
    	
    }
    
}

 

ErekSZ
关注
  • 0
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 打赏
    打赏
  • 3
    评论
专栏目录
连接LDAP服务器用户,使用 LDAP 服务器进行连接
weixin_36227100的博客
08-01 2813
使用 LDAP 服务器进行连接如果使用的是 Windows(Windows Mobile 除外)或 Unix 平台,则可以指定一个中央 LDAP 服务器来跟踪企业中的所有数据库服务器。如果数据库服务器在 LDAP 服务器中自行注册,客户端便可以查询 LDAP 服务器,找到其要查找的数据库服务器,无论这些服务器是在WAN、LAN 上还是位于防火墙的后面。客户端不需要指定 IP 地址 (HOST=)。...
lualdap设置unicodePwd不成功
Loon.x
09-08 2729
从网上搜到lualdap,狂喜,试之,连接,查询,新增User,OU,修改属性都OK,唯独修改不了密码unicodePwd. 重祭google大法, 结果没让人晕过去, 网上讨论这个问题一大把, 看来问题严重. 细看, 发现涉及证书, TLS/SSL, ASN.1 BER等, 怒了, 修改一个破密码这个多破事. 一一按要求办了, 还是报DSID-031A0FC0错误, 服了. 看来还得从头来过,
java ldap添加用户名密码_java – 在Active Directory LDAP中添加具有密码的用户
weixin_39719078的博客
03-06 272
这是我第一次使用StackOverflow,希望我能在这里得到一些回复.我正在使用Windows Active Directory 2008使用spring-ldap api从java存储新用户public void insertContact(ContactDTO contactDTO) {try{Attributes personAttributes = new BasicAttributes...
ldap java 不同加密方式的登录认证
最新发布
weixin_41495225的博客
07-14 39
LDAP Java 不同加密方式的登录认证 LDAP(Lightweight Directory Access Protocol)是一种用于访问和维护分布式目录信息服务的应用层协议。在Java中,我们可以使用JNDI(Java Naming and Directory Interface)来实现LDAP的操作。其中,常见的...
用C#读取LDAP记录
对信仰的忠诚丶
06-21 1835
LDAP读取记录,把edmworkstation和displayname这2项内容取出,放在一个dictionary中以备用.edmworkstation是用户的登记计算机名,可能含有多条记录.如果读取失败,则在dictionary中放一个"NotValid=yes"项目. private void GetLDAPInfo()           {
Ad身份验证总结
weixin_30629653的博客
04-30 1483
活动目录(Active Directory)是面向Windows Standard Server、Windows Enterprise Server以及 Windows Datacenter Server的目录服务。(Active Directory不能运行在Windows Web Server上,但是可以通过它对运行Windows Web Server的计算机进行管理。)Active Direc...
java删除用户代码_java代码 用户信息修改与删除
weixin_29017445的博客
02-16 789
package tushuguanli;import java.awt.*;import java.awt.event.*;import java.util.*;import javax.swing.*;import java.awt.*;import javax.swing.table.*;import java.util.*;import javax.swing.tree.DefaultMut...
JAVA使用Ldap操作AD的方法示例
08-26
在本文中,我们将深入探讨如何使用Java通过LdapActive Directory (AD)进行交互。首先,我们需要了解AD是一个集中式服务,用于管理网络中的用户、计算机和其他资源的身份和权限。Ldap(轻量级目录访问协议)是...
ldap总结文档
07-16
1. **服务器软件**: OpenLDAP、Apache Directory Server、Microsoft Active Directory等都是常见的LDAP服务器实现。 2. **安装步骤**: 安装软件包,配置服务器参数,创建初始目录结构,导入初始数据,设置权限和...
ldap sa4500
09-29
- **服务器选择**:根据企业需求选择合适的LDAP服务器,如Active DirectoryOpenLDAP等。 - **服务器配置**:包括服务器地址、端口、名等基本信息的设置。 - **认证方式**:确定采用简单认证还是绑定认证的...
java代码怎么实现删除用户,实现DELETE方法删除用户资源
weixin_39615219的博客
03-10 2260
在本节中, 我们将实现一个delete方法来删除用户资源。步骤1:打开UserDaoService.java文件。步骤2:创建一种删除用户资源的方法。UserDaoService.javapackage com.srcmini.server.main.user;import java.util.ArrayList;import java.util.Date;import java.util.Ite...
java用户删除_添加/删除用户
weixin_30189559的博客
02-28 1314
花之剑 阅读(162) 评论(0) 编辑 收藏 所属分类: linux添加/删除用户用useradd username(或者adduser username)添加一个名为username的用户,然后用passwd username指定口令。用户的信息记录在/etc/passwd文件里,由于每个用户都可以(而且必须能)读出这个文件然后就可以crack出其它用户的密码,为安全考虑现在都使用sha...
Win ldap php 改密码,PHP和IIS:用于密码更改的LDAPS连接
weixin_36036271的博客
03-27 216
我的目标是通过使用PHP& amp;的Web界面更改Active Directory中的密码. IIS.在遵循这些说明之前,我无法为LDAPS连接绑定到AD,但是在遵循这些说明之后,它似乎已成功连接,但是在尝试更改“ unicodePwd”时出现“服务器不愿意执行”错误值.请注意,以下代码将成功更改AD中用户的任何其他值.$ldaprdn = 'CN=Admin User,OU=****...
2024年最全CentOS7使用Docker安装MySQL5,Java码农是如何进入腾讯的
2301_82242988的博客
05-07 424
切莫死记硬背,小心面试官直接让你出门右拐1000道互联网Java面试题:
AD修改密码策略
疯狂技术
08-21 996
4. 运行--CMD:gpupdate /force 更新一下策略。
LDAP- AD pwd policy
a4453368的博客
05-10 1066
公司使用的是2008版的Active Directory。 public void updateCredentialToAd(String ownerId, String plainTextPassword) throws UnsupportedEncodingException { UserAD user = adUserInfoDao.getUserInfoBy...
php ldap modify,PHP ldap_mod_replace 用法 手册 | 示例代码
weixin_33910305的博客
03-27 563
chris at mr2madness dot comYou can use arrays for multiple attributes example:$entry[mail] = array("example@example.com","example2@example.com");$results=ldap_mod_add($ldapConnID,$dn,$entry);?>or a...
AD建设管理(二)| python3+ldap3管理AD实践(批量创建OU、用户、改密码、更新OU与用户)
热门推荐
本博客暂停使用
04-03 1万+
AD建设管理(二)| python3+ldap3管理AD实践(批量创建OU、用户、改密码
评论 3
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

ErekSZ

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值