Home > Uncategorized > Diff to html software / LDAP, Active Directory diff reports

## Diff to html software / LDAP, Active Directory diff reports

There is an older tool that produces HTML output of a diff of files. You can then email yourself the diff report, after some parsing, to get a good overview of changes.

It’s quite cool, and you can use it to produce a file change report for many things.

I have yet to roll out splunk at my site, which seems like a good solution to monitor changes made to active directory by leveraging security auditing. In the interim, it’s better to have some security than none, and I use the above diff tool to produce an Email twice daily of changes that occurred to Active Directory. Our AD isn’t very big, so this situation is a manageable one.

The batch script is as follows. Note that I use a variety of win32 ports of *nix tools. I’ve changed the name of the executable from above to diffhtml.exe

if exist c:\adsnapshot\ad.ldf (rm -f d:\adold.ldr & mv -f d:\adold.ldf)
.\gnucoreutils\bin\sleep 10