>I want to get a list of the attributes used at a directory service (LDAPv3). Is there a way to do that (w/o checking user by user)?
>Example :
>Suppose only attributeA and attributeB are used for the majority of entries but few users also has attributeC and attributeD. How could I get a list as :
>attributeA, B, C, D.
>TIA

Cetin,

Does this help?

DEFINE CLASS ValidateUser AS Session OLEPUBLIC 

  FUNCTION ValidateUser(tcUser AS String,;
    tcPassword AS String) OLEPUBLIC
    
    LOCAL lcresult AS String,;
      loName AS NameTranslate,;
      lcAccount AS String, loLDAP AS LDAP,;
      loLDAP2 AS LDAP,;
      oErr AS Exception, a_memberof,;
      lcUser AS String, lcCRLF As String 
    lcresult = ""
    lcCRLF = CHR(13) + CHR(10)
    DIMENSION a_memberof[1]
    * Change domain to the current domain
    lcUser = tcUser + '@domain.com'
    loName = CREATEOBJECT('NameTranslate')
    loName.InitEx(3, "", lcUser, "", tcPassword)
    loName.Set(9, lcUser)
    lcAccount = loName.Get(1)
    IF NOT EMPTY(lcAccount) THEN 
      loLDAP = GETOBJECT("LDAP:")
      TRY 
        loLDAP2 = loLDAP.OpenDSObject("LDAP://" +;
           lcAccount, lcAccount, tcPassword, 2)
      CATCH TO oErr
        lcresult = oErr.Message 
      FINALLY
        IF EMPTY(lcresult) THEN 
          a_memberof = loLDAP2.GetEx("MemberOF")
          * The array here will contain 
          * all the groups
          * there are two valid parts to the IF..
          IF ALEN(a_memberof, 1) > 0 AND;
              NOT EMPTY(a_memberof[1]) THEN 
            lcresult = "Yes"
          ELSE 
            lcresult = "No"
          ENDIF 
        ENDIF 
        STORE NULL TO loName, loLDAP, loLDAP2
      ENDTRY 
    ENDIF 
    RETURN lcresult
  ENDFUNC  
ENDDEFINE

I've broken up the formatting for readability. Drat! the parser's screwing up