Cyxo/ldap2zm.py

## ldap2zm.py
import random
import subprocess as sp
from time import sleep
import re

# Change these parameters for your own configuration
LDAP_URL="ldap://ldap.internal.example.com:389"
BASE_DN="ou=people,dc=example,dc=com"
FILTER="(objectClass=inetOrgPerson)" # This is a filter to get only people, change for your own case
ATTR=["uid", "givenName", "sn"]
DOMAIN = "example.com"
NAME_ALIAS=True # Whether to create first_name.last_name@domain as an alias to ldap_id@domain

# Get a list of existing Zimbra accounts
p = sp.Popen("su - zimbra -c 'echo gaa | zmprov -l'", stdout=sp.PIPE, shell=True)
(accounts,_) =  p.communicate()
p.wait()
accounts = accounts.decode().splitlines()

acc = []
for a in accounts:
  print(a)
  if "@" in a:
    acc.append(a)

# Get a list of accounts on the LDAP directory
ldapacc = {}

p = sp.Popen("ldapsearch -H %s -x -b %s '%s' %s" % (LDAP_URL, BASE_DN, FILTER, " ".join(ATTR)), stdout=sp.PIPE, shell=True)
(l,_) = p.communicate()
p.wait()
l = l.decode().splitlines()

lastcn = ""
for line in l:
  a = re.search(r'(\w+):', line)
  if a:
    attribute = a.group(1)
  else:
    continue

  if attribute == "dn":
    cn = re.search(r'cn=(.*),'+BASE_DN, line).group(1)
    ldapacc[cn] = {}
    lastcn = cn
  elif attribute in ATTR:
    ldapacc[lastcn][attribute] = line[len(attribute)+2:]

# Makes a list of commands to create the new accounts
toadd = []
for i in ldapacc.keys():
  if i + "@" + DOMAIN not in acc:
    print("Adding", i)
    pwd = "".join([random.choice('azertyuiopqsdfghjklmwxcvbnAZERTYUIOPQSDFGHJKLMWXCVBN1234567890') for _ in range(16)])
    toadd.append("ca %s@%s %s displayName %s\n" % (i,DOMAIN,pwd,i))

    if NAME_ALIAS:
      toadd.append("aaa %s@%s %s.%s@%s\n" % (i,DOMAIN,ldapacc[i]["givenName"].lower(),ldapacc[i]["sn"].lower(),DOMAIN))
toadd.append("exit\n")

with open("toadd.txt", "w+") as f:
  f.writelines(toadd)

# Create the new accounts
p = sp.Popen("cat toadd.txt | su - zimbra -c zmprov", shell=True)
p.wait()
	import random
	import subprocess as sp
	from time import sleep
	import re

	# Change these parameters for your own configuration
	LDAP_URL="ldap://ldap.internal.example.com:389"
	BASE_DN="ou=people,dc=example,dc=com"
	FILTER="(objectClass=inetOrgPerson)" # This is a filter to get only people, change for your own case
	ATTR=["uid", "givenName", "sn"]
	DOMAIN = "example.com"
	NAME_ALIAS=True # Whether to create first_name.last_name@domain as an alias to ldap_id@domain

	# Get a list of existing Zimbra accounts
	p = sp.Popen("su - zimbra -c 'echo gaa \| zmprov -l'", stdout=sp.PIPE, shell=True)
	(accounts,_) = p.communicate()
	p.wait()
	accounts = accounts.decode().splitlines()

	acc = []
	for a in accounts:
	print(a)
	if "@" in a:
	acc.append(a)

	# Get a list of accounts on the LDAP directory
	ldapacc = {}

	p = sp.Popen("ldapsearch -H %s -x -b %s '%s' %s" % (LDAP_URL, BASE_DN, FILTER, " ".join(ATTR)), stdout=sp.PIPE, shell=True)
	(l,_) = p.communicate()
	p.wait()
	l = l.decode().splitlines()

	lastcn = ""
	for line in l:
	a = re.search(r'(\w+):', line)
	if a:
	attribute = a.group(1)
	else:
	continue

	if attribute == "dn":
	cn = re.search(r'cn=(.*),'+BASE_DN, line).group(1)
	ldapacc[cn] = {}
	lastcn = cn
	elif attribute in ATTR:
	ldapacc[lastcn][attribute] = line[len(attribute)+2:]

	# Makes a list of commands to create the new accounts
	toadd = []
	for i in ldapacc.keys():
	if i + "@" + DOMAIN not in acc:
	print("Adding", i)
	pwd = "".join([random.choice('azertyuiopqsdfghjklmwxcvbnAZERTYUIOPQSDFGHJKLMWXCVBN1234567890') for _ in range(16)])
	toadd.append("ca %s@%s %s displayName %s\n" % (i,DOMAIN,pwd,i))

	if NAME_ALIAS:
	toadd.append("aaa %s@%s %s.%s@%s\n" % (i,DOMAIN,ldapacc[i]["givenName"].lower(),ldapacc[i]["sn"].lower(),DOMAIN))
	toadd.append("exit\n")

	with open("toadd.txt", "w+") as f:
	f.writelines(toadd)

	# Create the new accounts
	p = sp.Popen("cat toadd.txt \| su - zimbra -c zmprov", shell=True)
	p.wait()