Tuesday, December 1, 2015

SQL Server - select LOCKOUT/ACCOUNTDISABLE from a user in OPENQUERY LDAP (Active Directory)


SELECT *
  FROM OPENQUERY
               (ADSI,'SELECT  userAccountControl, sAMAccountName
                FROM ''LDAP://DC=domain,DC=com'' where objectClass = ''User'' ')
 WHERE (userAccountControl & 2 <> 0 or userAccountControl & 16 <> 0)

More info https://support.microsoft.com/en-us/kb/305144
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)