sochotnicky/binssh_keys_for_group.py

## binssh_keys_for_group.py
import sys
import ldap

l = ldap.initialize('ldap://ldap.corp.redhat.com')

groups = l.search_s('dc=redhat,dc=com', ldap.SCOPE_SUBTREE,
        'cn=%s' % sys.argv[1])
no_keys = []
for group in groups:
    query = '(|(uid=%s))' % ')(uid='.join(group[1]['memberUid'])
    users = l.search_s('dc=redhat,dc=com', ldap.SCOPE_SUBTREE,
                       query)
    for cn, user in users:
        if 'ipaSshPubKey' in user:
            for key in user['ipaSshPubKey']:
                print key
        else:
            no_keys.append(user['uid'][0])

print "Users without ssh keys in ldap: %s" % ", ".join(no_keys)
	import sys
	import ldap

	l = ldap.initialize('ldap://ldap.corp.redhat.com')

	groups = l.search_s('dc=redhat,dc=com', ldap.SCOPE_SUBTREE,
	'cn=%s' % sys.argv[1])
	no_keys = []
	for group in groups:
	query = '(\|(uid=%s))' % ')(uid='.join(group[1]['memberUid'])
	users = l.search_s('dc=redhat,dc=com', ldap.SCOPE_SUBTREE,
	query)
	for cn, user in users:
	if 'ipaSshPubKey' in user:
	for key in user['ipaSshPubKey']:
	print key
	else:
	no_keys.append(user['uid'][0])

	print "Users without ssh keys in ldap: %s" % ", ".join(no_keys)