> Is this doable? Is there a better way to do this? I would
> appreciate any input.
>
It is very doable -- there is plenty of Microsoft,
and others, source code to do the lookups in VB,
C, or C#. You can also do it in Perl which has
LDAP libraries.
There is also a bulk program if you don't mind taking
occasinal 'snapshots' rather than using live Active
Directory: Ldifde.exe
If you intend to program it on an MS platform you
should lookup up the ADSI Scriptomatic at Microsoft,
Google:
[ ADSI Scriptomatic site:microsoft.com ]
Herb Martin
HerbM@???
http://LearnQuick.Com
512 388 7339 -or- 1 800 MCSE PRO
Accelerated MCSE in a Week Seminars
