ldapmodify (1) - Linux Manuals
ldapmodify: LDAP modify entry and LDAP add entry tools
NAME
ldapmodify, ldapadd - LDAP modify entry and LDAP add entry tools
SYNOPSIS
ldapmodify [-V[V]] [-d
ldapadd
[-V[V]]
[-d
ldapmodify
opens a connection to an LDAP server, binds, and modifies or adds entries.
The entry information is read from standard input or from file through
the use of the -f option.
Specify general extensions with -e and modify extensions with -E.
'!' indicates criticality.
General extensions:
Modify extensions:
Specify general options.
General options:
the command:
will replace the contents of the "Modify Me" entry's
mail
attribute with the value "modme [at] example.com", add a
title
of "Grand Poobah", and the contents of the file "/tmp/modme.jpeg"
as a
jpegPhoto,
and completely remove the
description
attribute.
Assuming that the file
/tmp/newentry
exists and has the contents:
the command:
will add a new entry for Babs Jensen, using the values from the
file
/tmp/newentry.
Assuming that the file
/tmp/entrymods
exists and has the contents:
the command:
will remove Babs Jensen's entry.
DESCRIPTION
ldapmodify
is a shell-accessible interface to the
ldap_add_ext(3),
ldap_modify_ext(3),
ldap_delete_ext(3)
and
ldap_rename(3).
library calls.
ldapadd
is implemented as a hard link to the ldapmodify tool. When invoked as
ldapadd
the -a (add new entry) flag is turned on automatically.
OPTIONS
[!]assert=<filter> (an RFC 4515 Filter)
!authzid=<authzid> ("dn:<dn>" or "u:<user>")
[!]bauthzid (RFC 3829 authzid control)
[!]chaining[=<resolve>[/<cont>]]
[!]manageDSAit
[!]noop
ppolicy
[!]postread[=<attrs>] (a comma-separated attribute list)
[!]preread[=<attrs>] (a comma-separated attribute list)
[!]relax
sessiontracking
abandon,cancel,ignore (SIGINT sends abandon/cancel,
or ignores response; if critical, doesn't wait for SIGINT.
not really controls)
[!]txn[=abort|commit]
nettimeout=<timeout> (in seconds, or "none" or "max")
ldif-wrap=<width> (in columns, or "no" for no wrapping)
INPUT FORMAT
The contents of file (or standard input if no -f flag is given on
the command line) must conform to the format defined in
ldif(5)
(LDIF as defined in RFC 2849).
EXAMPLES
Assuming that the file
/tmp/entrymods
exists and has the contents:
dn: cn=Modify Me,dc=example,dc=com
changetype: modify
replace: mail
mail: modme [at] example.com
-
add: title
title: Grand Poobah
-
add: jpegPhoto
jpegPhoto:< file:///tmp/modme.jpeg
-
delete: description
-
ldapmodify -f /tmp/entrymods
dn: cn=Barbara Jensen,dc=example,dc=com
objectClass: person
cn: Barbara Jensen
cn: Babs Jensen
sn: Jensen
title: the world's most famous mythical manager
mail: bjensen [at] example.com
uid: bjensen
ldapadd -f /tmp/newentry
dn: cn=Barbara Jensen,dc=example,dc=com
changetype: delete
ldapmodify -f /tmp/entrymods
DIAGNOSTICS
Exit status is zero if no errors occur. Errors result in a non-zero
exit status and a diagnostic message being written to standard error.
AUTHOR
The OpenLDAP Project <http://www.openldap.org/>
ACKNOWLEDGEMENTS
OpenLDAP Software
is developed and maintained by The OpenLDAP Project <http://www.openldap.org/>.
OpenLDAP Software
is derived from University of Michigan LDAP 3.3 Release.
SEE ALSO
ldapadd(1),
ldapdelete(1),
ldapmodrdn(1),
ldapsearch(1),
ldap.conf(5),
ldap(3),
ldap_add_ext(3),
ldap_delete_ext(3),
ldap_modify_ext(3),
ldif(5)