How to log all Active Directory LDAP queries?
6,030
I have found the answer. Just change HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Expensive Search Results Threshold and HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Inefficient Search Results Threshold to 1, then I can see all the LDAP search details. https://msdn.microsoft.com/en-us/library/ms808539.aspx?f=255&MSPPError=-2147217396#efficientadapps_topic04, this article explains it.
Related videos on Youtube
02 : 26
Export All Active Directory Users
08 : 30
Querying Active Directory using CSharp (C#)
03 : 59
Microsoft LDAP - How to use DSQUERY to view an Active Directory Object Base DN
13 : 49
15 Active Directory Queries
05 : 45
Active Directory LDAP Filter Syntax in Active Directory Users and Computers
01 : 36
DevOps & SysAdmins: How to log all Active Directory LDAP queries?
Author by
Tom
Updated on September 18, 2022Comments
-
Tom over 1 year
I want to debug the Windows Server 2008's LDAP and see all the LDAP search details, so I edit the
Field Engineeringkey to 5 inHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Diagnosticsregistry entry, but in the event viewer, the "Field Engineering" log doesn't show up, anyone has some clue ? Thanks.