python ldap，ldap

最後更新：2016-12-20 來源：互聯網

上載者：User

創建阿里雲帳戶，並獲得超過 40 款產品的免費試用版；而企業帳戶則可以享有總值 $1200 的免費試用版。立即註冊！

python ldap，ldap

# -*- coding: UTF-8 -*-
import ldap,os
from ldap import modlist
LDAP_HOST = "aodun.com"
USER = "cn=admin,dc=aodun,dc=com"
PASSWORD = "aodun"
BASE_DN = "dc=aodun,dc=com"


class LdapOpt(object):
   def __init__(self, server_port=389):
      self.server_uri = LDAP_HOST
      self.server_port = server_port
      self.ldap_obj = None
      self.bind_name = USER
      self.bind_passwd = PASSWORD
      self.ldap_connect()
   
   def ldap_connect(self):
      """
      :param bind_name:
      :param bind_passwd:
      :return:
      """
      url = self.server_uri
      conn = ldap.open(url)
      try:
         rest = conn.simple_bind_s(self.bind_name, self.bind_passwd)
      except ldap.SERVER_DOWN:
         print(u"無法串連到LDAP")
      except ldap.INVALID_CREDENTIALS:
         print (u"LDAP帳號錯誤")
      except Exception, ex:
         print (type(ex))
      if rest[0] != 97:  # 97 表示success
         print (rest[1])
      self.ldap_obj = conn
   
   def add_user(self, base_dn, password):
      """
      base_dn: uid=test, ou=magicstack,dc=test,dc=com  NOT NONE
      """
      import random
      ldap_newuid = str(random.randint(100000,999999))
      ldap_getgid = str(random.randint(100000,999999))
      if not base_dn:
         print (u"DN不可為空")
      dn_list = base_dn.split(',')
      user_info = dict()
      for item in dn_list:
         attr, value = item.split('=')
         user_info[attr] = value
      attrs = {}
      attrs['objectclass'] = ['person', 'inetOrgPerson', 'posixAccount', 'organizationalPerson']
      attrs['cn'] = str(user_info['uid'])
      attrs['homeDirectory'] = '/home/%s' % str(user_info['uid'])
      attrs['loginShell'] = '/bin/bash'
      attrs['sn'] = str(user_info['uid'])
      attrs['uid'] =  str(user_info['uid'])
      attrs['uidNumber'] = ldap_newuid
      attrs['gidNumber'] = ldap_getgid
      attrs['userPassword'] = str(password)
      ldif = modlist.addModlist(attrs)
      try:
         result = self.ldap_obj.add_s(base_dn, ldif)
      except ldap.LDAPError, error_message:
         print (error_message)
         return False, error_message
      else:
         if result[0] == 105:
            return True, []
         else:
            return False, result[1]
   
   def delete_user(self, dn):
      """
      dn: cn=test, ou=magicstack,dc=test, dc=com
      """
      try:
         result = self.ldap_obj.delete_s(dn)
      except ldap.LDAPError, error_message:
         print (error_message)
         return False, error_message
      else:
         if result[0] == 107:
            return True, []
         else:
            return False, result[1]


if __name__ == "__main__":
   d = LdapOpt()
   print d.add_user("uid=chen,ou=People,dc=aodun,dc=com","123456")
   print d.delete_user("uid=chen,ou=People,dc=aodun,dc=com")

本文章原先以中文撰寫並發佈於 aliyun.com，亦設英文版本，僅作資訊用途。本網站不對文章的準確性，完整性或可靠性或其任何翻譯作出任何明示或暗示的陳述或保證。如對該文章有任何疑慮或投訴，請傳送電郵至 info-contact@alibabacloud.com 並提供相關疑慮或投訴的詳細說明。職員會於 5 個工作天內與您聯絡，一經驗證之後，即會刪除該侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More

python ldap，ldap

聯繫我們

A Free Trial That Lets You Build Big!

Sales Support

After-Sales Support