In addition to the standard options to the ldapsearch command, such as the base
•
•
•
•
•
•
Table
Option | Description |
Specifies that host names should be checked in SSL certificates. | |
|
|
Specifies the SSL key password file that contains the token:password pair. | |
|
|
Specifies the absolute path, including the file name, of the private key database of the client. | |
| The |
| the key database is not under the same directory as the certificate database, the cert8.db file (the |
| path which is specified with the |
|
|
Specifies the path to the security module database, such as | |
| |
| the security module database is in a different directory than the certificate database itself. |
|
|
Specifies the certificate name to use for | |
| |
| this option is specified, then the |
| authentication will not occur, and the bind operation will use the authentication credentials specified |
| on |
|
|
Specifies the absolute path, including the option, of the certificate database of the client. This option | |
| is used only with the |
| When used on a machine where an |
| this option can be that of the certificate database for the browser. For example: |
| |
| The client security files can also be stored on the Directory Server in the |
| |
| a path and file name similar to the following: |
| |
|
|
Specifies the token and certificate name, which is separated by a | |
|
|
Specifies the password for the private key database identified in the | |
| |
| If a dash |
| is entered. This avoids having the password on the command line. |
|
|
Specifies that SSL is to be used for the search request. | |
|
|
Specifies the Start TLS request. Use this option to make a cleartext connection into a secure one. If | |
| the server does not support Start TLS, the command does not have to be aborted; it will continue |
| in cleartext. |
|
|
Enforces the Start TLS request. The server must respond that the request was successful. If the server | |
| does not support Start TLS, such as Start TLS is not enabled or the certificate information is incorrect, |
| the command is aborted immediately. |
|
|
SASL mechanisms can be used to authenticate a user, using the
6.4 ldapsearch 193