| ldifde |
Stands for Lightweight Directory Access Protocol Interchange Format (LDIF) Directory Exchange, a utility for bulk import/export of data between line-delimited (LDIF) text files and Active Directory. ldifde can add, delete, or modify multiple user accounts, groups, computers, printers, or other AD objects in a single batch operation.
ldifde options
These are the same as for the csvde command described previously in this chapter, except for the following additional import-specific option:
-y
Use "lazy writes" to improve disk performance for import process.
The following is a properly formatted LDIF file called
C:\newusers.txt , which creates three new user accounts. The accounts created are identical to the ones created in the example for the csvde command earlier in this chapter:
dn: CN=George Smith,OU=Support,DC=mtitcanada,DC=com objectClass: user sAMAccountName: gsmith userPrincipalName: gsmith@mtitcanada.com displayName: George T. Smith userAccountControl: 514 # Create user account for Barb Smith dn: CN=Barb Smith,OU=Support,DC=mtitcanada,DC=com objectClass: user sAMAccountName: bsmith userPrincipalName: bsmith@mtitcanada.com displayName: Barbara Lynn Smith userAccountControl: 514 # Create user account for Judy Smith dn: CN=Judy Smith,OU=Support,DC=mtitcanada,DC=com objectClass: user sAMAccountName: jsmith userPrincipalName: jsmith@mtitcanada.com displayName: Judy Ann Smith userAccountControl: 512
Use ldifde to import the previous file into AD to create the users:
ldifde -i -f C:\newusers.txt Connecting to "test.mtitcanada.com" Logging in as current user using SSPI Importing directory from file "C:\newusers.txt" Loading entries.... 3 entries modified successfully. The command has completed successfully
Unlike csvde, which can only to add new objects to AD, ldifde can add, delete, or modify them.
If an attribute is to be left unspecified in an LDIF file, use FILL SEP as the value for the attribute.
See
Notes under csvde for more information.
Active Directory , csvde