Check if a User ID Matches the Correct AD User

Available Languages

Download Options

  • PDF     (19.8 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (79.4 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (63.9 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:October 3, 2025
Document ID:225129

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

    Introduction

    This document describes how to find the user mapping to check whether a user ID matches the correct AD user.

    Background Information

    When the ADSync process takes place on the connector, it exports all the required active directory data to files on disk and they are usually human-readable (text).

    Find the Current User on the Computer

    1. On the user computer, open a command prompt and run:
      • For Windows: nslookup -type=txt debug.opendns.com.
      • For Linux/Mac: dig txt debug.opendns.com.
    2. The output is similar to:
    nslookup -type=txt debug.opendns.com.
    Server: 192.168.1.10
    Address: 192.168.1.10#53
    Non-authoritative answer:
    debug.opendns.com text = "server your-opendns-va"
    debug.opendns.com text = "appliance id 007a2c2d"
    debug.opendns.com text = "host id a9b331e8f177c757b151c900df98d861"
    debug.opendns.com text = "user id 4907f8d4a18f122bf8f8b2709dae99ab"

    Find the Corresponding User on the Connector

    1. The user id field is the information we are looking for, take note of that id, in this case: 4907f8d4a18f122bf8f8b2709dae99ab
    2. Now, log into the server running the connector component
    3. Navigate to C:\Program Files\OpenDNS\OpenDNS Connector\ADSync
    4. Open the file UserStruct.ldif
    5. Search for the string taken from the nslookup command: 4907f8d4a18f122bf8f8b2709dae99ab
    6. Find the Hash file associated with the user, in this case John Doe and the output looks similar to:
    dn: CN=John Doe,OU=Users,OU=Corp,DC=Example,DC=com
    changetype: add
    memberOf: CN=Test-Group,OU=Groups,OU=Users,OU=Corp,DC=Example,DC=com
    memberOf: CN=Staff,OU=Groups,OU=Users,OU=Corp,DC=Example,DC=com
    Hash: 4907f8d4a18f122bf8f8b2709dae99ab

    Revision History

    Revision Publish Date Comments
    1.0
    03-Oct-2025
    Initial Release
    TAC Authored

    Contributed by Cisco Engineers

    Was this Document Helpful?

    FeedbackFeedback

    Contact Cisco

    This Document Applies to These Products