python ldap3域控组件(未完成,待跟进)
LDAP3 模块官网:
https://ldap3.readthedocs.io/en/latest/modifydn.html?highlight=%20modify_dn#the-modify-dn-operation
已摸索的代码:
from ldap3 import Server, Connection, ALL # host为域控服务器ip server = Server("192.168.0.245",get_info=ALL) # user(如domain\Administrator)和passwod为登录域控服务器的账户密码 conn = Connection(server, 'anec\Anec', 'He123123!!', auto_bind=True) # # 搜索---------------------------------------------- res = conn.search('CN=Computers,dc=anec,dc=com', search_filter='(objectclass=person)',attributes=['cn']) # # search是否成功(True,False) # print(res) # # 查询失败的原因 # print(conn.result) #查询到的数据 print(conn.entries[0]) # #----------------------------------------------------- # # 添加部门,固定搭配:object_class='OrganizationalUnit' # res = conn.add('OU=ceshi,dc=anec,dc=com', object_class='OrganizationalUnit') # print(res) # print(conn.result) # """ # 参考: https://ldap3.readthedocs.io/tutorial_operations.html # :param userid: "linan" # :param username: "姓名" cn=姓名 # :param mobile: # :param mail: "xxx@domain.com" # :param title: # :param ou_dn: "ou=运维中心,dc=domain,dc=com" # :param gidnumber: 501 默认用户组 # :return: # """ # # # 添加用户,attributes支持的字段可以通过server.schema.object_classes['user']获取 # res = conn.add('CN=aa3,OU=ceshi,dc=anec,dc=com', object_class='user', attributes={ # 'mobile': '123', #座机电话 # 'sn': 'aa3', #姓 # 'mail': 'aa3@qq.com', #电子邮箱 # 'userPassword': 'He123123!!', # 'title': 'aaa3', # 'uid': 'aa2' # # 'gidNumber': gidnumber, # # 'uidNumber': uidNumber # # 'homeDirectory': '/home/users/%s' % userid, # # 'loginShell': '/bin/bash' # }) # print(res) # print(conn.result)
修改AD域用户的OU(组织单元)
# coding=utf-8 from ldap3 import Server, Connection CeshiServer = { 'IP': "10.1.88.40", # 此处注意账号前一定需要添加对应AD域的域名,否则登录绑定失败 'admin': r'ceshi\XXXX', 'password': 'XXXXXX', 'basedomain': 'dc=ceshi,dc=com' } # 连接到AD域控 server = Server(CeshiServer.get('IP')) # 替换为您的域控地址 conn = Connection(server, CeshiServer.get('admin'), CeshiServer.get('password'), auto_bind=True) # 替换为您的域控用户名和密码 # 准备移动用户的相关信息 user_dn = 'cn=1,ou=test,dc=ceshi,dc=com' # 替换为要移动的用户的DN new_ou_dn = 'ou=test02,dc=ceshi,dc=com' # 替换为用户要移动到的新组织单元的DN # 转移OU conn.modify_dn('cn=1,ou=test,dc=ceshi,dc=com', 'cn=1', new_superior='ou=test02,dc=ceshi,dc=com') # {'result': 0, 'description': 'success', 'dn': '', 'message': '', 'referrals': None, 'type': 'modDNResponse'} print(conn.result) # 关闭 conn.unbind()
修改AD域用户命名(组织单元)
# coding=utf-8 from ldap3 import Server, Connection CeshiServer = { 'IP': "10.1.88.40", # 此处注意账号前一定需要添加对应AD域的域名,否则登录绑定失败 'admin': r'ceshi\hequn', 'password': 'He123123!!', 'basedomain': 'dc=ceshi,dc=com' } # 连接到AD域控 server = Server(CeshiServer.get('IP')) # 替换为您的域控地址 conn = Connection(server, CeshiServer.get('admin'), CeshiServer.get('password'), auto_bind=True) # 替换为您的域控用户名和密码 # 准备移动用户的相关信息 user_dn = 'cn=1,ou=test,dc=ceshi,dc=com' # 替换为要移动的用户的DN new_ou_dn = 'ou=test02,dc=ceshi,dc=com' # 替换为用户要移动到的新组织单元的DN # 重命名用户 conn.modify_dn('cn=user1,ou=users,o=company', 'cn=user2') print(conn.result) # {'result': 0, 'description': 'success', 'dn': '', 'message': '', 'referrals': None, 'type': 'modDNResponse'} print(conn.result) # 关闭 conn.unbind()
封装模块
# coding=utf-8 # author :hequn # version 2023.5.19 v2.0 from ldap3 import Server, Connection, ALL, SUBTREE, MODIFY_REPLACE from ldap3.extend.microsoft.modifyPassword import ad_modify_password from ldap3.extend.microsoft.addMembersToGroups import ad_add_members_to_groups as addMembersToGroups from ldap3.extend.microsoft.removeMembersFromGroups import ad_remove_members_from_groups as removeMembersToGroups class Domain(object): Conn = '' sever = '' def __init__(self, IP, username, password, use_ssl=False): """ :param IP: 服务器IP地址 :param username: 有权限修改的账户名 :param password: 账户密码 :param use_ssl: 是否使用ssl方式连接 """ self.sever = Server(IP, get_info=ALL, use_ssl=use_ssl) self.Conn = Connection(self.sever, username, password, auto_bind=True) def Search(self, DomainAddress, Fileter,Attributes=None): ''' :param DomainAddress: :param Fileter: '(objectcategory=organizationalunit)' 搜索 OU '(objectcategory=computer)' 搜索 主机 '(objectClass=group)' 搜索 用户组 '(&(userPrincipalName=*)(|(cn=%s)(sAMAccountName=%s)))' 搜索给定用户信息 '(&(objectClass=user)(objectClass=person))' 搜索 所有用户 :param Attributes: :return: 返回list数据 ''' if not Attributes: Attributes = ['*'] self.Conn.search(DomainAddress, Fileter, attributes=Attributes, paged_size=1000, search_scope=SUBTREE) date_list = list() date_list.extend(self.Conn.entries) cookie = self.Conn.result['controls']['1.2.840.113556.1.4.319']['value']['cookie'] while cookie: self.Conn.search(DomainAddress, Fileter, attributes=Attributes, paged_size=1000, search_scope=SUBTREE, paged_cookie=cookie) date_list.extend(self.Conn.entries) cookie = self.Conn.result['controls']['1.2.840.113556.1.4.319']['value']['cookie'] return date_list # 新增OU def AddOU(self, ouName): ''' :param ouName: 新增OU,必须输入完整的路径才能新增 实例: ou=test,dc=ceshi,dc=com :return: True / False ''' try: result = self.Conn.add(ouName, object_class='OrganizationalUnit') return result except Exception as e: print(e) self.sever = None self.Conn = None return False # 新增用户 def add_ad_user(self,emaildomian,username, password, description, depFullpath): ''' :param emaildomian: ceshi.com 邮箱后面一节 :param username: testuser 用户登录名 :param password: XXXXXX 用户密码 :param description: 描述信息 :param depFullpath: ou=test,dc=ceshi,dc=com 部门ou全名: :param attributes: :return: ''' attributes = {'displayName': username, 'description': description, 'userPrincipalName':' %s@%s' % (username, emaildomian), 'userAccountControl': '544', 'sAMAccountName': username, 'pwdLastSet': -1} try: resulit = self.Conn.add('CN=' + username +',' + depFullpath,['User'],attributes=attributes) res = self.UpdateUserPassword('CN=' + username +',' + depFullpath,password) if resulit and res: return True else: return False except Exception as e: self.Conn.server =None self.Conn.connect =None return False # 新增用户组 def AddGroup(self, OU,GroupType={'groupType':-2147483646}): """ :param OU: str type 'cn=ALBION品牌学院,ou=共享文件夹群组,dc=syounggroup,dc=com', :param Attributes: dict type groupType: -2147483644 -2147483644 本地组 -2147483646 全局组 :return: """ try: res = self.Conn.add(OU, 'group',GroupType) return res except Exception as e: print(e) self.sever = None self.Conn = None return False def PasswordAuth(self,serverip, username, password): ''' :param serverip: 服务器IP地址,固定AD服务器可以写固定值 :param username: 用户名 域用户效验时,需要加前缀 ceshi\user :param password: 用户密码 :return: 'result': 0, 'description': 'success' (0, 'success') 密码正确 ''' try: s = Server(serverip, port=389, get_info=ALL, use_ssl=False) c = Connection(s, user=username, password=password, check_names=True, lazy=False, raise_exceptions=False) c.open() c.bind() return (c.result['result'],'密码正确') except Exception as e: return (1,'账户密码不正确或用户不存在!') #将用户添加到指定组 def AddUserOnOrganizationalUnit(self,MembersList,GroupList): return addMembersToGroups(self.Conn,MembersList,GroupList) def RemoveUserOnOrganizationalUnit(self,MembersList,GroupList): return removeMembersToGroups(self.Conn, MembersList, GroupList,True) # 修改用户密码 def UpdateUserPassword(self,UserFullname,password): ''' :param UserFullname: :param newpassword: :return: True / False ''' try: res = ad_modify_password(self.Conn,UserFullname,password,None) if res: return True else: return False except Exception as e: print(e) self.sever = None self.Conn = None return False # 禁止用户 def DisableUser(self, UserFullname): """ 禁用ad用户 :param UserFullname 完整的OU地址: :return: """ try: self.Conn.modify(UserFullname, {'userAccountControl': [(MODIFY_REPLACE, ['514'])]}) res = self.Conn.result if res['result'] == 0 and res['description'] == 'success': return True else: return False except Exception as e: print(e) self.sever = None self.Conn = None return False # 启用用户 def EnableUser(self,UserFullname): """ 启用ad用户 :param UserFullname 完整的OU地址: :return: """ try: self.Conn.modify(UserFullname, {'userAccountControl': [(MODIFY_REPLACE, ['544'])]}) res = self.Conn.result if res['result'] == 0 and res['description'] == 'success': return True else: return False except Exception as e: print(e) self.sever = None self.Conn = None return False # 删除用户 def delete_ad_user(self,UserFullname): """ 删除ad用户 :param UserFullname 完整的OU地址: :return: """ try: res = self.Conn.delete(UserFullname) return res except Exception as e: print(e) self.sever = None self.Conn = None return False if __name__ == '__main__': CeshiServer = { 'IP': "10.1.88.40", 'username': r'ceshi\XXXX', 'password': 'XXXXX!', 'basedomain': 'dc=ceshi,dc=com' } do = Domain(CeshiServer.get('IP'),CeshiServer.get('username'),CeshiServer.get('password'),use_ssl=True) flag = do.Mimaxiaoyan('10.1.88.40','ceshi\XXXX','XXXXX') print(do.Conn.result) print(flag)
请求域控数据 以及过滤条件 语法
# 在修改用户组织单元 distinguishedName 属性时: 根据返回的错误信息,用户移动失败的原因是"constraintViolation",并指定了属性"distinguishedName"的约束违反。 这种情况通常发生在试图修改用户的"distinguishedName"属性时,因为"distinguishedName"是一个只读属性,不允许直接修改。 在AD域控中,用户的"distinguishedName"属性是其在目录树中的唯一标识,它包含了用户所在的位置信息,包括组织单元、域和根目录等。由于"distinguishedName"是由系统自动生成和维护的,因此不允许直接修改它。 如果您想要移动用户到另一个部门,应该通过修改用户所在的组织单元(OU)或其他相关属性来实现,而不是修改"distinguishedName"属性。 过滤条件: filter = "(" filtercomp ")" filtercomp = and / or / not / item and = "&" filterlist or = "|" filterlist not = "!" filter filterlist = 1*filter item = simple / present / substring / extensible simple = attr filtertype value filtertype = equal / approx / greater / less equal = "=" approx = "~=" greater = ">=" less = "<=" extensible = attr [":dn"] [":" matchingrule] ":=" value / [":dn"] ":" matchingrule ":=" value present = attr "=*" substring = attr "=" [initial] any [final] initial = value any = "*" *(value "*") final = value attr = AttributeDescription from Section 4.1.5 of [1] matchingrule = MatchingRuleId from Section 4.1.9 of [1] value = AttributeValue from Section 4.1.6 of [1] 类方法 ['_state', 'userPrincipalName', 'badPasswordTime', 'objectGUID', 'msDS-SupportedEncryptionTypes', 'uSNChanged', 'logonCount', 'objectClass', 'userWorkstations', 'lastLogoff', 'primaryGroupID', 'dSCorePropagationData', 'lastLogonTimestamp', 'sn', 'userAccountControl', 'whenCreated', 'distinguishedName', 'memberOf', 'displayName', 'sIDHistory', 'adminCount', 'badPwdCount', 'uSNCreated', 'whenChanged', 'objectCategory', 'countryCode', 'lastLogon', 'pwdLastSet', 'objectSid', 'lockoutTime', 'name', 'sAMAccountName', 'cn', 'accountExpires', 'pager', 'sAMAccountType', 'mail', 'codePage', 'logonHours', 'instanceType', '__module__', '__doc__', 'entry_writable', '__init__', '__repr__', '__str__', '__iter__', '__contains__', '__getattr__', '__setattr__', '__getitem__', '__eq__', '__lt__', 'entry_dn', 'entry_cursor', 'entry_status', 'entry_definition', 'entry_raw_attributes', 'entry_raw_attribute', 'entry_mandatory_attributes', 'entry_attributes', 'entry_attributes_as_dict', 'entry_read_time', '_changes', 'entry_to_json', 'entry_to_ldif', '__dict__', '__weakref__', '__hash__', '__getattribute__', '__delattr__', '__le__', '__ne__', '__gt__', '__ge__', '__new__', '__reduce_ex__', '__reduce__', '__subclasshook__', '__init_subclass__', '__format__', '__sizeof__', '__dir__', '__class__'] OU 组织单元参数 实例(entry_attributes_as_dict 转成dict类型): {'uSNChanged': [12736], 'distinguishedName': ['OU=办公信息化一部,DC=ceshi,DC=com'], 'whenCreated': [datetime.datetime(2022, 5, 15, 7, 57, 13, tzinfo=datetime.timezone.utc)], 'objectGUID': ['{6d17380a-e728-4a46-a448-7bcb0c13add0}'], 'uSNCreated': [12736], 'whenChanged': [datetime.datetime(2022, 5, 15, 7, 57, 13, tzinfo=datetime.timezone.utc)], 'ou': ['办公信息化一部'], 'instanceType': [4], 'name': ['办公信息化一部'], 'dSCorePropagationData': [datetime.datetime(1601, 1, 1, 0, 0, tzinfo=datetime.timezone.utc)], 'objectClass': ['top', 'organizationalUnit'], 'objectCategory': ['CN=Organizational-Unit,CN=Schema,CN=Configuration,DC=ceshi,DC=com']} 参数分析: distinguishedName ['OU=办公信息化一部,DC=ceshi,DC=com'] whenCreated [datetime.datetime(2022, 5, 15, 7, 57, 13, tzinfo=datetime.timezone.utc)] 'objectGUID': ['{6d17380a-e728-4a46-a448-7bcb0c13add0}'] 'uSNCreated': [12736] 'whenChanged': [datetime.datetime(2022, 5, 15, 7, 57, 13, tzinfo=datetime.timezone.utc)] 'ou': ['办公信息化一部'] 'instanceType': [4] 'name': ['办公信息化一部'] 'dSCorePropagationData': [datetime.datetime(1601, 1, 1, 0, 0, tzinfo=datetime.timezone.utc)] 'objectClass': ['top', 'organizationalUnit'] 'objectCategory': ['CN=Organizational-Unit,CN=Schema,CN=Configuration,DC=ceshi,DC=com']} objectcategory 参数: user 查询用户信息 示例: DN: CN=gest002,OU=IT审计,OU=不同步邮箱账号,DC=yujiahui,DC=com - STATUS: Read - READ TIME: 2021-05-26T17:24:43.533054 accountExpires: 9999-12-31 23:59:59.999999+00:00 badPasswordTime: 1601-01-01 00:00:00+00:00 badPwdCount: 0 c: CN cn: gest002 co: 中国 codePage: 0 company: 公司名字 countryCode: 156 dSCorePropagationData: 1601-01-01 00:00:00+00:00 department: 部门 description: 帅帅 displayName: 显示名字 distinguishedName: CN=gest002,OU=IT审计,OU=不同步邮箱账号,DC=yujiahui,DC=com facsimileTelephoneNumber: 传真 givenName: 名 homePhone: 家庭电话 info: 注释 instanceType: 4 ipPhone: IP电话 l: 长沙 lastLogoff: 1601-01-01 00:00:00+00:00 lastLogon: 1601-01-01 00:00:00+00:00 logonCount: 0 mail: 邮箱 mobile: 移动电话 name: gest002 objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=yujiahui,DC=com objectClass: top person organizationalPerson user objectGUID: {1e4a9df2-73a2-49cc-9ef4-be1440aafb6b} objectSid: S-1-5-21-514234331-3194182272-42211215-19113 pager: 寻呼机 physicalDeliveryOfficeName: 办公室 postOfficeBox: 邮政信箱 postalCode: 邮政编码 primaryGroupID: 513 pwdLastSet: 2020-05-13 01:40:25.281412+00:00 sAMAccountName: gest002 sAMAccountType: 805306368 sn: 性 st: 湖南 streetAddress: 岳麓区 telephoneNumber: 电话 title: 职位 uSNChanged: 73633199 uSNCreated: 31293888 userAccountControl: 512 userPrincipalName: gest002@yujiahui.com wWWHomePage: 首页 whenChanged: 2021-05-26 09:25:01+00:00 whenCreated: 2020-05-13 01:40:25+00:00 [DN: CN=ceshiuser0001,OU=江楠测试,OU=IT测试使用,OU=不同步邮箱账号,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-05-17T20:28:34.976265 accountExpires: 9999-12-31 23:59:59.999999+00:00 badPasswordTime: 1601-01-01 00:00:00+00:00 badPwdCount: 0 cn: ceshiuser0001 codePage: 0 countryCode: 0 dSCorePropagationData: 2021-12-29 08:21:14+00:00 2021-11-22 11:40:18+00:00 2021-11-19 08:25:14+00:00 2021-11-19 08:24:14+00:00 1601-07-14 22:36:48+00:00 displayName: ceshiuser0001 distinguishedName: CN=ceshiuser0001,OU=江楠测试,OU=IT测试使用,OU=不同步邮箱账号,DC=syounggroup,DC=com instanceType: 4 lastLogoff: 1601-01-01 00:00:00+00:00 lastLogon: 1601-01-01 00:00:00+00:00 logonCount: 0 memberOf: CN=ceshi00003,OU=江楠测试,OU=IT测试使用,OU=不同步邮箱账号,DC=syounggroup,DC=com name: ceshiuser0001 objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top person organizationalPerson user objectGUID: {88b54ff6-0ae5-4bf4-a9de-4da42661736b} objectSid: S-1-5-21-88358230-583260354-1133626278-9313 primaryGroupID: 513 pwdLastSet: 2021-06-19 15:22:58.745535+00:00 sAMAccountName: ceshiuser0001 sAMAccountType: 805306368 telephoneNumber: 2222222222 uSNChanged: 129477678 uSNCreated: 6780244 userAccountControl: 544 userPrincipalName: ceshiuser0001@syounggroup.com whenChanged: 2023-05-17 12:22:39+00:00 whenCreated: 2021-06-19 15:22:58+00:00 ] person 同样也是查询用户信息 示例: DN: CN=紫心,OU=北区,OU=销售管理学院,OU=线下运营部,OU=御泥坊品牌事业部,DC=yujiahui,DC=com - STATUS: Read - READ TIME: 2021-04-16T17:16:39.473933 accountExpires: 9999-12-31 23:59:59.999999+00:00 badPasswordTime: 2021-04-02 10:41:43.869543+00:00 badPwdCount: 2 cn: 紫心 codePage: 0 countryCode: 0 dSCorePropagationData: 2021-02-27 09:59:31+00:00 2020-03-12 18:24:55+00:00 2020-03-12 18:04:14+00:00 2020-03-09 09:03:41+00:00 1601-01-01 18:16:32+00:00 displayName: 紫心 distinguishedName: CN=紫心,OU=北区,OU=销售管理学院,OU=线下运营部,OU=御泥坊品牌事业部,DC=yujiahui,DC=com instanceType: 4 lastLogon: 2020-10-04 21:45:51.685938+00:00 lastLogonTimestamp: 2021-03-31 12:32:18.595932+00:00 logonCount: 0 mail: zixin@yujiahui.com name: 紫心 objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=yujiahui,DC=com objectClass: top person organizationalPerson user objectGUID: {7ae52268-8ca2-436e-b907-8c77439bc418} objectSid: S-1-5-21-514234331-3194182272-42211215-3417 pager: 1622302333 primaryGroupID: 513 pwdLastSet: 2016-06-13 16:01:42.403833+00:00 sAMAccountName: zixin sAMAccountType: 805306368 scriptPath: 360EntSetup.bat sn: 罗菱菱 uSNChanged: 71886062 uSNCreated: 18496 userAccountControl: 66048 userPrincipalName: zixin@yujiahui.com userWorkstations: zixin,domain-server,backup-domain,16adbackup whenChanged: 2021-03-31 12:32:18+00:00 whenCreated: 2016-06-03 07:19:39+00:00 computer 查询计算机 示例: DN: CN=XIANGBIN,OU=Computers02,DC=yujiahui,DC=com - STATUS: Read - READ TIME: 2021-04-16T17:28:28.849849 accountExpires: 9999-12-31 23:59:59.999999+00:00 cn: XIANGBIN codePage: 0 countryCode: 0 dNSHostName: XIANGBIN.yujiahui.com dSCorePropagationData: 2021-01-02 12:15:34+00:00 2020-03-12 18:26:30+00:00 2020-03-12 18:24:55+00:00 2020-03-12 18:18:00+00:00 1601-01-01 18:12:16+00:00 distinguishedName: CN=XIANGBIN,OU=Computers02,DC=yujiahui,DC=com instanceType: 4 isCriticalSystemObject: False lastLogonTimestamp: 2016-08-08 05:53:24.424793+00:00 localPolicyFlags: 0 msDS-SupportedEncryptionTypes: 28 name: XIANGBIN objectCategory: CN=Computer,CN=Schema,CN=Configuration,DC=yujiahui,DC=com objectClass: top person organizationalPerson user computer objectGUID: {e3083b7b-3917-4482-910a-f311e0b83698} objectSid: S-1-5-21-514234331-3194182272-42211215-4305 operatingSystem: Windows 7 旗舰版 operatingSystemServicePack: Service Pack 1 operatingSystemVersion: 6.1 (7601) primaryGroupID: 515 pwdLastSet: 2016-08-08 05:53:25.391998+00:00 sAMAccountName: XIANGBIN$ sAMAccountType: 805306369 servicePrincipalName: TERMSRV/xiangbin.yujiahui.com TERMSRV/XIANGBIN RestrictedKrbHost/XIANGBIN HOST/XIANGBIN RestrictedKrbHost/XIANGBIN.yujiahui.com HOST/XIANGBIN.yujiahui.com uSNChanged: 23276811 uSNCreated: 12920 userAccountControl: 4096 whenChanged: 2020-03-04 18:04:33+00:00 whenCreated: 2016-07-07 01:46:43+00:00 group 查询用户组信息 示例: DN: CN=花瑶花,OU=用户新建组,OU=不同步邮箱账号,DC=yujiahui,DC=com - STATUS: Read - READ TIME: 2021-04-16T17:08:57.870776 cn: 花瑶花 dSCorePropagationData: 2020-03-12 18:24:55+00:00 2020-03-12 18:04:13+00:00 2019-08-16 07:44:44+00:00 2019-08-16 07:32:40+00:00 1601-07-14 22:36:49+00:00 distinguishedName: CN=花瑶花,OU=用户新建组,OU=不同步邮箱账号,DC=yujiahui,DC=com groupType: -2147483646 instanceType: 4 name: 花瑶花 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=yujiahui,DC=com objectClass: top group objectGUID: {075ff5c5-46d1-4baf-bf01-ac963cda12e0} objectSid: S-1-5-21-514234331-3194182272-42211215-3314 sAMAccountName: 花瑶花 sAMAccountType: 268435456 uSNChanged: 12861 uSNCreated: 12861 whenChanged: 2019-04-25 16:38:16+00:00 whenCreated: 2016-05-23 08:40:29+00:00 被禁用用户 DN: CN=农九,OU=大集团淘内接待组,OU=水羊国际大集团客服部,OU=水羊客服事业部,OU=水羊股份,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-02-21T15:57:17.343968 accountExpires: 9999-12-31 23:59:59.999999+00:00 badPasswordTime: 2023-01-17 08:04:23.856802+00:00 badPwdCount: 2 cn: 农九 codePage: 0 countryCode: 0 dSCorePropagationData: 2022-10-29 05:30:52+00:00 2021-11-22 11:40:18+00:00 2021-11-19 08:25:14+00:00 2021-11-19 08:24:14+00:00 1601-07-14 22:36:50+00:00 displayName: 农九 distinguishedName: CN=农九,OU=大集团淘内接待组,OU=水羊国际大集团客服部,OU=水羊客服事业部,OU=水羊股份,DC=syounggroup,DC=com instanceType: 4 lastLogoff: 1601-01-01 00:00:00+00:00 lastLogon: 2023-01-10 08:41:29.045841+00:00 lastLogonTimestamp: 2023-01-10 08:41:29.045841+00:00 logonCount: 313 mail: nongjiu@syounggroup.com memberOf: CN=98-3-水羊客服事业部-水羊国际大集团客服部,OU=98-水羊客服事业部,OU=共享权限组,DC=syounggroup,DC=com CN=50-阿凡达客服组-只读组,OU=50-阿凡达客服组,OU=共享权限组,DC=syounggroup,DC=com msDS-SupportedEncryptionTypes: 0 name: 农九 objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top person organizationalPerson user objectGUID: {34a4f64c-966c-4473-ac4e-3004f198239e} objectSid: S-1-5-21-88358230-583260354-1133626278-11774 primaryGroupID: 513 pwdLastSet: 2023-01-11 09:39:57.446667+00:00 sAMAccountName: nongjiu sAMAccountType: 805306368 sn: 朱运爽 uSNChanged: 106129581 uSNCreated: 19484990 userAccountControl: 514 userPrincipalName: nongjiu@syounggroup.com userWorkstations: nongjiu,domain-server,backup-domain,16adbackup,server12,slaveAD whenChanged: 2023-01-11 09:40:17+00:00 whenCreated: 2021-09-27 01:26:22+00:00 组: DN: CN=16-HPH私域共享-管理组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-03-06T12:21:13.226503 cn: 16-HPH私域共享-管理组 dSCorePropagationData: 2022-05-23 06:11:20+00:00 2021-11-22 11:40:18+00:00 1601-01-01 00:04:17+00:00 distinguishedName: CN=16-HPH私域共享-管理组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com groupType: -2147483646 instanceType: 4 name: 16-HPH私域共享-管理组 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top group objectGUID: {793c6cb5-53b8-4a2c-b471-b806766e52f3} objectSid: S-1-5-21-88358230-583260354-1133626278-13270 sAMAccountName: $MUC000-06JR8RB61S6T sAMAccountType: 268435456 uSNChanged: 26319530 uSNCreated: 26319530 whenChanged: 2021-11-22 11:14:51+00:00 whenCreated: 2021-11-22 11:14:51+00:00 , DN: CN=16-HPH私域共享-只读组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-03-06T12:21:13.226503 cn: 16-HPH私域共享-只读组 dSCorePropagationData: 2022-05-23 06:11:20+00:00 2021-11-22 11:40:18+00:00 1601-01-01 00:04:17+00:00 distinguishedName: CN=16-HPH私域共享-只读组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com groupType: -2147483646 instanceType: 4 member: CN=茉欣,OU=大水滴业务中台组,OU=大水滴综合运营部,OU=大水滴渠道运营部,OU=大水滴品牌事业部,OU=水羊股份,DC=syounggroup,DC=com name: 16-HPH私域共享-只读组 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top group objectGUID: {97a127ec-6c1f-4d92-993f-c6a80d460990} objectSid: S-1-5-21-88358230-583260354-1133626278-13271 sAMAccountName: $NUC000-5TNE6TTUTRRU sAMAccountType: 268435456 uSNChanged: 27205845 uSNCreated: 26319534 whenChanged: 2021-11-29 02:37:47+00:00 whenCreated: 2021-11-22 11:14:51+00:00 , DN: CN=16-HPH私域共享-读写组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-03-06T12:21:13.226503 cn: 16-HPH私域共享-读写组 dSCorePropagationData: 2022-05-23 06:11:20+00:00 2021-11-22 11:40:18+00:00 1601-01-01 00:04:17+00:00 distinguishedName: CN=16-HPH私域共享-读写组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com groupType: -2147483646 instanceType: 4 member: CN=小飘,OU=HPH品牌管理部,OU=水羊股份,DC=syounggroup,DC=com CN=黛窗,OU=HPH品牌管理部,OU=水羊股份,DC=syounggroup,DC=com CN=麦麦,OU=HPH品牌管理部,OU=水羊股份,DC=syounggroup,DC=com CN=怀仁,OU=HPH品牌管理部,OU=水羊股份,DC=syounggroup,DC=com name: 16-HPH私域共享-读写组 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top group objectGUID: {aff18205-08b4-4e37-944d-e69412aabce2} objectSid: S-1-5-21-88358230-583260354-1133626278-13272 sAMAccountName: $OUC000-1J6O29N609GJ sAMAccountType: 268435456 uSNChanged: 27206107 uSNCreated: 26319538 whenChanged: 2021-11-29 02:39:21+00:00 whenCreated: 2021-11-22 11:14:51+00:00 , DN: CN=16-HPH私域共享-特权组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com - STATUS: Read - READ TIME: 2023-03-06T12:21:13.226503 cn: 16-HPH私域共享-特权组 dSCorePropagationData: 2022-05-23 06:11:20+00:00 2021-11-22 11:40:18+00:00 1601-01-01 00:04:17+00:00 distinguishedName: CN=16-HPH私域共享-特权组,OU=16-HPH私域共享,OU=共享权限组,DC=syounggroup,DC=com groupType: -2147483646 instanceType: 4 name: 16-HPH私域共享-特权组 objectCategory: CN=Group,CN=Schema,CN=Configuration,DC=syounggroup,DC=com objectClass: top group objectGUID: {9a4ebc1c-5b72-4fbe-bb1b-b8b3c2e5e2d5} objectSid: S-1-5-21-88358230-583260354-1133626278-13273 sAMAccountName: $PUC000-30G07R1LB0CS sAMAccountType: 268435456 uSNChanged: 26319542 uSNCreated: 26319542 whenChanged: 2021-11-22 11:14:51+00:00 whenCreated: 2021-11-22 11:14:51+00:00
既要脚踏实地,也需仰望天空