堆栈内存溢出
  简体   繁体   English

通过ldap python将用户添加到活动目录

[英]add user to active directory by ldap python

 原文  2018-05-25 11:30:43       python/ python-3.x/ active-directory/ ldap

问题描述

I wrote the below code for adding a user to active directory 2012. 我编写了以下代码,用于将用户添加到活动目录2012。
I use pycharm and python3.5 but I'm getting this error: 我使用pycharmpython3.5但出现此错误:

{'info': '000020D6: SvcErr: DSID-0310081B, problem 5012 (DIR_ERROR), data 0\\n', 'desc': 'Operations error'}

My code is as follows: 我的代码如下: 

server = 'ldap://31.184.132.39:389'
ldap_pass = 'function92'
ldap_bind = 'ou=DaaSUsers,dc=xaas,dc=local'

def create_user_activedirectory(username , password , name ):
    username = str(username)
    password=str(password)
    name=str(name)
    con = ldap.initialize(server)
    con.simple_bind_s("administrator@xaas.local", "function92")
    dn = "cn="+username+", ou=DaaSUsers, o=XaaS.local"
    mymodlist = {
         "objectClass": ["account".encode('utf-8'), "posixAccount".encode('utf-8'), "shadowAccount" .encode('utf-8')],
        #"objectClass": [str("inetOrgPerson").encode('utf-8')],
        "cn":[str(name).encode('utf-8')],
        "uid": [str(username).encode('utf-8')],
        "uidNumber": [str("5025").encode('utf-8')],
        "gidNumber": [str("30033").encode('utf-8')],
        "homeDirectory": [str("/home/"+name).encode('utf-8')],
        "loginShell": ["/bin/bash".encode('utf-8')],
        "gecos" : [str(username).encode('utf-8')],
        "userPassword": [password.encode('utf-8')] ,
        "shadowLastChange": [str("0").encode('utf-8')],
        "shadowMax": [str("0").encode('utf-8')],
        "shadowWarning": [str("0").encode('utf-8')],
        "sn": ["De Paepe".encode('utf8')],
        "givenName": ["Maarten".encode('utf8')],
        "displayName": ["Maarten De Paepe".encode('utf8')],
    }
    con.add_s(dn,ldap.modlist.addModlist(mymodlist))
    con.unbind_s()

Please help me. 请帮我。

1 个解决方案

解决方案1
 0 已采纳  2018-05-25 13:07:16

That error usually means it doesn't like some of the values you are giving it. 该错误通常表示它不喜欢您为其提供的某些值。 Here are a couple things I notice, but it may not be everything: 我注意到了以下几点,但可能还不是全部:

  1. The objectClass . objectClass Are those classes actually valid in your domain? 这些类在您的域中实际上有效吗? Do any existing user accounts have those classes? 现有的任何用户帐户都具有这些类吗? The default classes for a user object are usually "organizationalPerson", "person", "top", and "user". 用户对象的默认类通常是“ organizationalPerson”,“ person”,“ top”和“ user”。 Most of the time, you don't need to actually set this attribute yourself. 大多数时候,您不需要自己实际设置此属性。

  2. I don't see you setting sAMAccountName and userPrincipalName . 我看不到您设置sAMAccountNameuserPrincipalName Those are required attributes. 这些是必填属性。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用ldap3 Python获取Active Directory中的用户状态(禁用或活动) - Get user status (disabled or active) in Active Directory with ldap3 Python python-ldap和Microsoft Active Directory:连接并删除用户 - python-ldap and Microsoft Active Directory: connect and delete user 在 Python 中使用 LDAP 检测 Active Directory 用户帐户是否被锁定 - Detect if an Active Directory user account is locked using LDAP in Python 使用 ldap python 启用 Active Directory 用户帐户 - Enable Active Directory user account using ldap python 使用 Python ldap 模块解锁 Active Directory 上的锁定用户帐户 - unlocking Locked user accounts on Active Directory using Python ldap module Python LDAP和Active Directory问题 - Python LDAP and Active Directory issue 无法验证,无法在活动目录中启用用户,使用python ldap创建的用户帐户 - Unable to authenticate ,enable the user in active Directory ,the user account created by using python ldap 对Active Directory中的安全组进行Python LDAP身份验证 - Python LDAP authentication to a Security Group in Active Directory Python LDAP写入Active Directory的属性 - Python LDAP write attribute to Active Directory 使用ldap python更新Active Directory密码 - Update Active Directory Password using ldap python
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM