![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 93%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,700 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 0%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFM%3C/text%3E%3C/svg%3E)
@BrettSh You can use LDP.exe on the computer where you have installed AD DS Tools.
- Run
Nltest /dsgetdc:command and copy the DC name from the output. - Run
LDP.exeand click on Connection > Connect > Paste the DCName, use Port 636 and select SSL checkbox. - Click on bind under connection menu and login using your service account.
- Click on Browse menu > Search and specify the parameters as highlighted below. In the output you will get UPN and Employee ID.
OR
Download ADFind.exe from http://www.joeware.net/freetools/tools/adfind/ and run below command:
AdFind.exe -h DC_Name:636 -b cn=users,dc=your_domain,dc=your_domain_suffix -f "objectcategory=person" userprincipalname name employeeID
Note: Instead of cn=users you can specify OU=your_OU_name to search within specific OU or just specify domain's DN to perform domain wide search.
-----------------------------------------------------------------------------------------------------------
Please "mark as answer" or "vote as helpful" wherever the information provided helps you to help others in the community.