Ldap Requests, Downloading the Ldap Utilities | RSA Security 6.1

in a specified file. Because ldapmodify uses LDIF update statements, ldapmodify can do everything ldapdelete can do.

Xldapdelete – The ldapdelete utility deletes entries from an existing LDAP directory. ldapdelete opens a connection to the specified server using the distinguished name and password you provide, binds, and deletes the entry or entries.

LDAP Requests

LDAP requests are submitted in two ways:

XBy specifying options on the LDAP command line.

XBy placing instructions and data into an LDAP Data Interchange Format (LDIF) file, which you then invoke on the command line by using the -foption.

Because communication between the LDAP client and server must occur in the clear (unencrypted), run the LDAP utilities on the same computer as

RSA RADIUS Server.

Downloading the LDAP Utilities

To use the LCI, you need the freeware ldapsearch, ldapmodify, and ldapdelete utilities. You can download the free LDAP utilities as follows:

1Use a browser to navigate to http://www.sun.com/download/products.xml?id=/3ec28dbd.

2When the Sun ONE Directory SDK (software development kit) download page appears, click the Download link at the bottom of the page.

3If you are prompted to register yourself, complete the registration form.

4When you are prompted to accept the license agreement, click the Accept button and then click Continue.

5Download the SDK by clicking the link for the version of the SDK that is appropriate for your computer.

Versions of the SDK are available for Solaris, Linux, and Windows.

6When the download is completed, extract the following files from the compressed image to a directory on your computer:

Z ldapsearch.exe

Z ldapmodify.exe

Z ldapdelete.exe

RSA RADIUS Server 6.1 Administrator’s Guide Using the LDAP Configuration Interface

83

Image 95

RSA Security 6.1 manual Ldap Requests, Downloading the Ldap Utilities

Contents

RSA Radius Server 6.1 Administrator’s Guide Contact Information Trademarks Distribution Contents Chapter Installing the RSA Radius Server Chapter Administering Profiles Glossary Index What’s In This Manual About This GuideAudience Syntax Conventions Requests for Comments RFCs Related DocumentationRSA Radius Server Documentation Vendor Information Before You Call for Customer Support Getting Support and ServiceThird-Party Products About RSA Radius Server RSA Radius Server Features About RSA Radius Server September RSA Radius Server Overview RSA Radius Authentication Radius Packets Radius Client Configuration Radius ConfigurationRadius Server Configuration Radius Shared Secrets Node Secret Radius SecretReplication Secret Radius Ports Authentication Accounting Comma-Delimited Log Files Accounting Sequence Tunneled Accounting Make/Model Field AttributesDictionaries Vendor-Specific Attributes Updating Attribute Information Checklist AttributesAttribute Lists Multi-Valued Attributes Attribute ValuesReturn List Attributes Echo Property Default ValuesOrderable Attributes System Assigned Values Centralized Configuration Management Designating a New Primary Radius Server Replacing a Replica Radius Server Changing the Name or IP Address of a Server Recovering a Replica After a Failed Download Data Migration/Registration Installing the RSA Radius ServerBefore You Begin Required Files System Requirements Installing on Windows If you are installing a Replica RSA Radius Server, click Installing the RSA Radius Server Uninstalling the RSA Radius Server Software Installer Syntax Installing on Solaris Path Reppkg Installing the RSA Radius Server Software Enter RSA administration port Stopping and Starting the Radius Daemon Migration Log File Linux Server System Requirements Installing on Linux Should be overwritten Installing the RSA Radius Server Software Enter RSA administration port Etc/init.d/sbrd stop # ./uninstallrsa.sh Running RSA Radius Administrator Using RSA Radius Administrator File Menu Navigating in RSA Radius AdministratorRSA Radius Administrator Menus Panel Menu See , Administering Radius Clients on Help Menu RSA Radius Administrator ToolbarWeb Menu Adding an Entry RSA Radius Administrator Windows Sample Add Window Editing an Entry Sample Edit Window Cutting/Copying/Pasting Records Sorting Information Using Context MenusResizing Columns Changing Column Sequence Adding a License Key Accessing Online HelpDisplaying Version Information Add a License for Server Window Exiting the RSA Radius Administrator Radius Clients Panel Administering Radius Clients Add Radius Client Window Adding a Radius Client Secret to display the characters in the shared secret Deleting a Radius Client Verifying a Shared SecretPage Administering Radius Clients September About Profiles Administering ProfilesAdding a Checklist or Return List Attribute for a Profile Resolving Profile and User Attributes Default Profile Adding a Profile Setting Up Profiles Click Add to add this attribute/value pair to the list Removing a Profile Administering Profiles September Displaying Statistics Displaying Server Authentication Statistics Statistics Panel System Authentication Statistics Radius client is sending incorrectly formed packets to Statistics Panel System Accounting Statistics Displaying Server Accounting Statistics Accounting Statistic Meaning Displaying Radius Client Statistics Resetting Server Statistics Optionally, sort the messages by clicking a column header Displaying Statistics September Administering Radius Servers Adding a Radius Server Manually Replication Panel Add Server Window Deleting a Radius Server Enabling a Radius Server Notifying Replica Radius Servers Publishing Server Configuration Information Designating a New Primary Radius Server Recovering a Replica After a Failed Download Changing the Name or IP Address of a Server Regenerating a Node Secret Resetting the Radius Database Administering Radius Servers September Logging Files Using the Radius System LogLogging Controlling Log File Size Level of Logging Detail Accounting Log File Format Using the Accounting Log Comma Placeholders First Line Headings Acct-Status-Type Standard Radius Accounting Attributes Acct-Input-Packets P e n d i x a Ldap Configuration Interface File Ldap Utilities About the Ldap Configuration Interface Downloading the Ldap Utilities Ldap Requests Ldap Version Compliance Configuring the Ldap TCP Port Available Attributes Ldap Virtual Schema Ldap Schema Slide 2 Ldap Schema Slide 3 Cn=username,o=radius -w passcode cachedPW Unspecified or 0.0.0.0 RAS IP address When you display Searching for Records Ldap Command Examples Ldapmodify Option Meaning Modifying Records Where Adding Records Deleting Records Stattype server Statistics VariablesCounter Statistics Stattype accounting Stattype authentication Rate Statistics Using the Ldap Configuration Interface September AAA Glossary DNS Tokencode Radius Servers TLS 104 Glossary September Index Tokencode