Python – unlocking Locked user accounts on Active Directory using Python ldap module

active-directorypython

I recently implemented password reset on AD using python ldap module.

This involved passing modified attributes in this manner:

add_pass = [(ldap.MOD_REPLACE, "unicodePwd", )]

This worked since the passwords on AD are stored in attribute "unicodePwd".

Now I want to unlock a locked user account but I cannot find the attribute that must be changed to achieve the same.

Could you guys please tell me which attribute I have to change?

Best Answer

To unlock a user, you need to set the lockoutTime attribute to 0.

Related Solutions

Python – Authenticating against active directory using python + ldap

I was missing

l.set_option(ldap.OPT_REFERRALS, 0)

From the init.

What are the differences between LDAP and Active Directory

Active Directory is a database based system that provides authentication, directory, policy, and other services in a Windows environment

LDAP (Lightweight Directory Access Protocol) is an application protocol for querying and modifying items in directory service providers like Active Directory, which supports a form of LDAP.

Short answer: AD is a directory services database, and LDAP is one of the protocols you can use to talk to it.

Best Answer

Related Solutions

Python – Authenticating against active directory using python + ldap

What are the differences between LDAP and Active Directory

Related Topic