ldap command

Use this command to display and configure the LDAP protocol configuration parameters.

The following table shows the arguments for the options.

Table 1. ldap command. The following table is a multi-row three column table consisting of the options, option descriptions, and associated values for the options.
Option	Description	Values
-a	User authentication method	local only, LDAP only, local first then LDAP, LDAP first then local
-aom	Authentication only mode	enabled, disabled
-b	Binding method	anonymous, bind with ClientDN and password, bind with Login Credential
-c	Client distinguished name	String of up to 127 characters for client_dn
-d	Search domain	String of up to 63 characters for search_domain
-f	Group filter	String of up to 127 characters for group_filter
-fn	Forest name	For active directory environments. String of up to 127 characters.
-g	Group search attribute	String of up to 63 characters for group_search_attr
-l	Login permission attribute	String of up to 63 characters for string
-p	Client password	String of up to 15 characters for client_pw
-pc	Confirm client password	String of up to 15 characters for confirm_pw Command usage is: ldap -p client_pw -pc confirm_pw This option is required when you change the client password. It compares the confirm_pw argument with the client_pw argument. The command will fail if the arguments do not match.
-ep	Encrypted password	Backup/restore password (internal use only)
-r	Root entry distinguished name (DN)	String of up to 127 characters for root_dn
-rbs	Enhanced Role-Based Security for active directory users	enabled, disabled
-s1ip	Server 1 host name/IP address	String up to 127 characters or an IP address for host name/ip_addr
-s2ip	Server 2 host name/IP address	String up to 127 characters or an IP address for host name/ip_addr
-s3ip	Server 3 host name/IP address	String up to 127 characters or an IP address for host name/ip_addr
-s4ip	Server 4 host name/IP address	String up to 127 characters or an IP address for host name/ip_addr
-s1pn	Server 1 port number	A numeric port number up to 5 digits for port_number
-s2pn	Server 2 port number	A numeric port number up to 5 digits for port_number
-s3pn	Server 3 port number	A numeric port number up to 5 digits for port_number
-s4pn	Server 4 port number	A numeric port number up to 5 digits for port_number
-t	Server target name	When the rbs option is enabled, this field specifies a target name that can be associated with one or more roles on the Active Directory server through the Role-Based Security (RBS) Snap-In tool.
-u	UID search attribute	String of up to 63 characters for search_attrib
-v	Get LDAP server address through DNS	off, on
-h	Displays the command usage and options

Syntax:

ldap [options]
options:
   -a loc|ldap|locld|ldloc 
   -aom enable/disabled
   -b anon|client|login   
   -c client_dn            
   -d search_domain         
   -f group_filter          
   -fn forest_name
   -g group_search_attr   
   -l string               
   -p client_pw            
   -pc confirm_pw          
   -ep encrypted_pw
   -r root_dn               
   -rbs enable|disabled
   -s1ip host name/ip_addr 
   -s2ip host name/ip_addr 
   -s3ip host name/ip_addr 
   -s4ip host name/ip_addr 
   -s1pn port_number       
   -s2pn port_number       
   -s3pn port_number       
   -s4pn port_number       
   -t name
   -u search_attrib        
   -v off|on               
   -h

Give documentation feedback