Determining the DN of my Active Directory user

Answer

When configuring the Netezza database to authenticate using ldap to an Active Directory server, you need to provide the DN of the user we will be reading with.  While most users are used to the domain\user syntax of AD, there is a .X509 ldap-based syntax that is needed.  This is usually in the form of:CN=My_User,CN=Users,DC=my_group,DC=my_company,DC=com

If you do not know what the DN of your user is, you can find it by doing the following:
1. Log into your Windows system as the user for which you are trying to figure the DN (for example, domain\my_user ). 
2. Click Start.
3. In the Run field, enter cmd. A command window opens.
4. Change to the c:\ directory:
cd c:\
5. Create a new file:
edit FindMyDN.vbs



6. Enter the following two lines and save the file:
Set objADSysInfo = CreateObject("ADSystemInfo")
wscript.echo objADSysInfo.UserName



7. From the command prompt execute the script: 
wscript FindMyDN.vbs



The script displays a dialog box that tells you the DN for this user:


Now you can determine if the binddn entry in the /etc/ldap.conf file is using the correct value.