-3

Can you please help with ldapsearch where we need to find users created/updated in openDJ like from lastweek/yesterday .Basically looking for a filter that pull up users that got updated like password ..etc after certain date

rene
  • 41,474
  • 78
  • 114
  • 152
Vasa
  • 1
  • 3
  • 2
    Tell us what you have tried and show logs or results and Read: https://stackoverflow.com/help/how-to-ask – jwilleke May 01 '20 at 15:54

1 Answers1

1

It depends on the LDAP Server Implementation which attributes are used (or even if they are available) Something like this?

Created:

(&(createTimestamp>=20070101000000Z)(createTimestamp<=20170101000000Z))

Modified

(&(ModifyTimestamp>=20070101000000Z)(ModifyTimestamp<=20170101000000Z))

Password Changed Time

(&(PwdChangedTime>=20070101000000Z)(PwdChangedTime<=20170101000000Z))
jwilleke
  • 10,467
  • 1
  • 30
  • 51
  • Thanks for the response. I have tried these commands but none of these are working. Can you please let me know how to check are these attributes are used or not during implementation . Because i have not installed OpenDJ. – Vasa May 01 '20 at 16:02
  • 1
    Well, OpenDJ does use and set those attributes automatically for all entries that are created or updated over LDAP. These first 2 attributes are standards and part of the LDAPv3 specifications, so they should be available on all servers. Because they are operational, they may not be returned with the entries, unless explicitly requested. The 3rd one (PwdChangedTime) will only be available on servers that implement the LDAP Password Policy internet draft. OpenDJ and OpenLDAP do. – Ludovic Poitou May 02 '20 at 16:31