Skip to main content

Batch editing LDAP passwords


I need to implement a groupware for my organisation. In order to achieve this, I need to test each user login, and make some interaction tests, espacially for free/busy features of the calendar.
The authencation is against an LDAP server.
I need to copy the LDAP server and batch modify the passwords to be all the same in my test environment.
In order to achieve this, I need to list all “dn” and modify the “userPassword” value.

This is done in two steps:

ldapsearch -w 'admin-password' \
           -x -D 'cn=admin,dc=rktmb,dc=org' \
           -b 'ou=Users,dc=rktmb,dc=org' \
           -s one \
           -H ldap://localhost  dn

To list the users
 
ldapsearch -w 'admin-password' \
           -x -D 'cn=admin,dc=rktmb,dc=org' \
           -b 'ou=Users,dc=rktmb,dc=org' \
           -s one \
           -H ldap://localhost  dn \
    | awk '/^dn: /{print $0"\nchangetype: modify
                            \nreplace: userPassword
                            \nuserPassword:: e3NoYX11MWRucUpaQ\n";}' \
    > modified.ldif

To write it to an output file.
 
ldapmodify -c -w 'admin-password' \
              -x -D "cn=admin,dc=rktmb,dc=org" \
              -H ldap://localhost \
              -f  modified.ldif -S modified.log

To make the changes.

Popular posts from this blog

npm run build base-href

Using NPM to specify base-href When building an Angular application, people usually use "ng" and pass arguments to that invocation. Typically, when wanting to hard code "base-href" in "index.html", one will issue: ng build --base-href='https://ngx.rktmb.org/foo' I used to build my angular apps through Bamboo or Jenkins and they have a "npm" plugin. I got the habit to build the application with "npm run build" before deploying it. But the development team once asked me to set the "--base-href='https://ngx.rktmb.org/foo'" parameter. npm run build --base-href='https://ngx.rktmb.org/foo did not set the base href in indext.html After looking for a while, I found https://github.com/angular/angular-cli/issues/13560 where it says: You need to use −− to pass arguments to npm scripts. This did the job! The command to issue is then: npm run build -- --base-href='https://ngx.rktmb.org/foo&
Read more

emacs29 intelephense

Emacs 29 and PHP Intelephense I use to use Emacs and PHP Intelephense for PHP development. I recently upgraded to Emacs 29 and PHP Intelephense stopped working. I found a solution on Reddit Based on that, I rewrote my .emacs file to use eglot instead of lsp-mode, and this is the result. (use-package eglot :ensure t) (add-hook 'php-mode-hook 'eglot-ensure) (use-package php-mode :ensure t :mode ("\\.php\\'" . php-mode)) (add-to-list 'auto-mode-alist '("\\.php$" . php-mode)) (provide 'lang-php) (use-package company :ensure t :config (setq company-idle-delay 0.3) (global-company-mode 1) (global-set-key (kbd "M- ") 'company-complete)) (require 'eglot) (add-to-list 'eglot-server-programs '((php-mode :language-id "php") . ("intelephense" "--stdio" :initializationOptions (:licenseKey "98989898989898989898"
Read more

Jenkins invalid privatekey

Publish over SSH, Message "invalid privatekey:" With quite recent (June-July 2020) installations of Jenkins and OpenSSH, I have the following error message when using the "Deploy overs SSH" Jenkins plug-in and publishing artifacts to the target overs SSH: jenkins.plugins.publish_over.BapPublisherException: Failed to add SSH key. Message [invalid privatekey: [B@d8d395a] This problem seems to be referenced here: https://issues.jenkins-ci.org/browse/JENKINS-57495 Just regenerate a key with the right parameters To solve it: ssh-keygen -t rsa -b 4096 Or ssh-keygen -t rsa -b 4096 -m PEM
Read more