6.5.5 Additional ldapmodify options

Table 6-14 Additional ldapmodify options

Option

Description

-b

Causes the utility to check every attribute value to determine whether the value is a valid file

 

reference. If the value is a valid file reference, then the content of the referenced file is used as the

 

attribute value. This is often used for specifying a path to a file containing binary data, such as JPEG.

 

For example, to add a jpegPhoto attribute, specify the -boption on the ldapmodify call. In the

 

LDIF provided to the ldapmodify utility, include a line like the following:

 

jpegPhoto: /tmp/photo.jpeg

 

The ldapmodify command reads the contents of the photo.jpeg file into the jpegPhoto attribute

 

being added to the entry.

 

As an alternative to the -boption, use the :< URL specifier notation, which is simpler. For example:

 

jpegphoto:< file:///tmp/myphoto.jpg

 

Although the official notation requires three ///, the use of one / is accepted.

 

NOTE:

 

The :< URL specifier notation only works if LDIF statement is version 1 or later, meaning version:

 

1 is inserted in the lDIF file. Otherwise, the file URL is appended as the attribute value rather than

 

the contents of the file.

 

For further information on the LDIF format, see the "Managing Directory Entries" chapter in the

 

HP-UX Directory Server administrator guide.

-c

Specifies that the utility run in continuous operation mode. Errors are reported, but the utility

 

continues with modifications. The default is to quit after reporting an error.

-H

Lists all available options for the ldapmodify command.

-M

Manages smart referrals. This causes the server not to return the smart referral contained on the

 

entry but, instead, to apply the modification request directly to the entry. Use this option to add,

 

change, or delete a directory entry that contains a smart referral. For more information about smart

 

referrals, see the "Configuring Directory Databases" chapter in the HP-UX Directory Server

 

administrator guide.

-n

Specifies that the entries are not actually to be modified but that the ldapmodify command is to

 

show what it would do with the specified input.

-O

Specifies the maximum number of referral hops to follow. For example:

 

-O 2

-R

Specifies that referrals are not to be followed automatically.

-v

Specifies that the utility is to run in verbose mode.

-V

Specifies the LDAP version number to be used on the operation. For example:

 

-V 2

 

LDAPv3 is the default. An LDAPv3 operation cannot be performed against a Directory Server that

 

only supports LDAPv2.

-Y

Specifies the proxy DN to use for the modify operation. This argument is provided for testing

 

purposes. For more information about proxied authorization, see the "Managing Access Control"

 

chapter in the HP-UX Directory Server administrator guide.

6.6 ldapdelete

The ldapdelete command performs delete operations on directory entries through LDAP.

“ldapdelete syntax” (page 205)

“Commonly-used ldapdelete options” (page 205)

“ldapdelete SSL options” (page 205)

204 Command-line utilities

Page 204
Image 204
HP UX Identity Security Software manual Ldapdelete, Additional ldapmodify options