How to Look Up User-ID User for Given Email Addresses on the CLI

How to Look Up User-ID User for Given Email Addresses on the CLI

17619
Created On 09/26/18 13:50 PM - Last Modified 06/09/23 05:57 AM


Resolution


PAN-OS 6.1 and later

 

Details

Use the following CLI command to show User-ID user for an email address:

> show user email-lookup

+ base               Default base distinguished name (DN) to use for searches
+ bind-dn            bind distinguished name
+ bind-password      bind password
+ domain             Domain name to be used for username
+ group-object       group object class(comma-separated)
+ name-attribute     name attribute
+ proxy-agent        agent ip or host name.
+ proxy-agent-port   user-id agent listening port, default is 5007
+ use-ssl            use-ssl
* email              email address
> mail-attribute     mail attribute
> server             ldap server ip or host name.
> server-port        ldap server listening port

 

Example:

> show user email-lookup base "DC=lab,DC=sg,DC=paloaltonetworks,DC=local" bind-dn
"CN=Administrator,CN=Users,DC=lab,DC=sg,DC=paloaltonetworks,DC=local" bind-password
paloalto use-ssl no email user1@lab.sg.paloaltonetworks.local mail-attribute mail server
10.1.1.1 server-port 389

 

labsg\user1

 

owner: hlim
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClsGCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language