15.8. Searching for Objects in a Domain
You want to find objects that match certain criteria in a domain.
Using a graphical user interface
Open LDP from the Support Tools (ldp.exe).
From the menu, select Connection → Connect.
For Server, enter the name of a domain controller (or leave blank to do a serverless bind).
For Port, enter 389. To perform a forest-wide search using the Global Catalog, enter 3268.
From the menu, select Connection → Bind.
Enter credentials of a user.
From the menu, select Browse → Search.
For BaseDN, type the base distinguished name where to start the search.
For Scope, select the appropriate scope.
For Filter, enter an LDAP filter.
If you expect your search to return a large number of objects (e.g., more than 1000), you'll need to enable the Paged LDAP control to see them all in LDP.
Click the Options button.
For Timeout (s), enter a value such as 10.
For Page size, enter the number of objects to be returned with each page, (e.g., 1000).
Under Search Call Type, select Paged.
A page of results (i.e., 1000 entries) will be displayed each time you click on Run until all results have been returned.
Using a command-line interface
Use the following command to perform a search against a domain controller:
> dsquery *
<Filter>" -attr "
The following example searches for all
siteLink objects in the Configuration
> dsquery * "cn=configuration,dc=rallencorp,dc=com" -scope subtree ...