September 2003
Intermediate to advanced
624 pages
15h 49m
English
Content preview from Active Directory CookbookBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
4.15. Refreshing a Dynamic Object
Tip
This recipe requires the Windows Server 2003 forest functional level.
Problem
You want to refresh a dynamic object to keep it from expiring and getting deleted from Active Directory.
Solution
In each solution below, an example of adding a
user object is used. Modify the examples as needed
to refresh whatever
object is needed.
Using a graphical user interface
Open LDP.
From the menu, select Connection → Connect.
For Server, enter the name of a domain controller (or leave it blank to do a serverless bind).
For Port, enter 389.
Click OK.
From the menu, select Connection → Bind.
Enter credentials of a user that can modify the object.
Click OK.
Select Browse → Modify.
For Dn, enter the DN of the dynamic object you want to refresh.
For Attribute, enter
entryTTL.For Values, enter the new time to live (TTL) for the object in seconds.
Under Operation, select Replace.
Click Enter.
Click Run.
Using a command-line interface
Create an LDIF file called refresh_dynamic_object.ldf with the following contents:
dn: cn=jsmith,cn=users,dc=rallencorp,dc=com changetype: modify replace: entryTTL entryTTL: 1800 -
then run the following command:
> ldifde -v -i -f refresh_dynamic_object.ldf
Using VBScript
set objUser = GetObject("LDAP://cn=jsmith,cn=users,dc=rallencorp,dc=com")
objUser.Put "entryTTL", "1800"
objUser.SetInfoDiscussion
Dynamic objects expire after their TTL becomes 0. You can determine
when a dynamic object will expire by looking at the current value of
an object’s entryTTL, which ...