Technet gives the following description of this command. “Creates, modifies, and deletes directory objects on computers running Windows Server 2003 operating systems or Windows XP Professional. You can also use Ldifde to extend the schema, export Active Directory user and group information to other applications or services, and populate Active Directory with data from other directory services.”
I typically use this to find out a specific ldap attribute which is useful when I’m writing VB scripts that loop through each user object in active directory and change attributes. This command is run from the windows command line. Here are some examples.
Display ldap attributes for all user objects within active directory:
ldifde -d “cn=Users,DC=3rdleveldomain,DC=2ndleveldomain,DC=com” -f con
Display ldap attributes for a single user object:
ldifde -d “cn=Firstname Lastname,cn=Users,DC=3rdlevel,DC=2ndleveldomain,DC=com” -f con
Further details on this command are available at Microsoft Technet