Unix/Linux Go Back    

RedHat 9 (Linux i386) - man page for ldappasswd (redhat section 1)

Linux & Unix Commands - Search Man Pages
Man Page or Keyword Search:   man
Select Man Page Set:       apropos Keyword Search (sections above)


       ldappasswd - change the password of an LDAP entry

       ldappasswd [-A] [-a oldPasswd] [-D binddn] [-d debuglevel] [-H ldapuri] [-h ldaphost] [-n]
       [-p ldapport] [-S] [-s newPasswd] [-v] [-W] [-w passwd] [-O security-properties] [-I] [-Q]
       [-U authcid] [-x] [-X authzid] [-Y mech] [-Z[Z]] [user]

       ldappasswd  is  a  tool	to  set the password of an LDAP user.  ldappasswd uses the LDAPv3
       Password Modify (RFC 3062) extended operation.

       ldappasswd sets the password of associated with	the  user  [or	an  optionally	specified
       user].	If  the  new  password	is not specified on the command line and the user doesn't
       enable prompting, the server will be asked to generate a password for the user.

       ldappasswd is neither designed nor intended to be a replacement for passwd(1)  and  should
       not be installed as such.

       -A     Prompt  for  old	password.  This is used instead of specifying the password on the
	      command line.

       -a oldPasswd
	      Set the old password to oldPasswd.

       -x     Use simple authentication instead of SASL.

       -D binddn
	      Use the Distinguished Name binddn to bind to the LDAP directory.

       -d debuglevel
	      Set the LDAP debugging level to  debuglevel.   ldappasswd  must  be  compiled  with
	      LDAP_DEBUG defined for this option to have any effect.

       -H ldapuri
	      Specify URI(s) referring to the ldap server(s).

       -h ldaphost
	      Specify an alternate host on which the ldap server is running.  Deprecated in favor
	      of -H.

       -p ldapport
	      Specify an alternate TCP port where the ldap server is  listening.   Deprecated  in
	      favor of -H.

       -n     Do not set password. (Can be useful when used in conjunction with -v or -d)

       -S     Prompt  for  new	password.  This is used instead of specifying the password on the
	      command line.

       -s newPasswd
	      Set the new password to newPasswd.

       -v     Increase the verbosity of output.  Can be specified multiple times.

       -W     Prompt for bind password.  This is used instead of specifying the password  on  the
	      command line.

       -w passwd
	      Use passwd as the password to bind with.

       -O security-properties
	      Specify SASL security properties.

       -I     Enable SASL Interactive mode.  Always prompt.  Default is to prompt only as needed.

       -Q     Enable SASL Quiet mode.  Never prompt.

       -U authcid
	      Specify  the  authentication  ID	for  SASL bind. The form of the ID depends on the
	      actual SASL mechanism used.

       -X authzid
	      Specify the requested authorization ID for SASL bind.  authzid must be one  of  the
	      following formats: dn:<distinguishedname> or u:<username>.

       -Y mech
	      Specify  the  SASL  mechanism to be used for authentication. If it's not specified,
	      the program will choose the best mechanism the server knows.

       -Z[Z]  Issue StartTLS (Transport Layer Security) extended operation. If you use	-ZZ,  the
	      command will require the operation to be successful

       ldap_sasl_bind(3) ldap_extended_operation(3) ldap_start_tls_s(3)

       The OpenLDAP Project <http://www.openldap.org/>

       OpenLDAP  is  developed and maintained by The OpenLDAP Project (http://www.openldap.org/).
       OpenLDAP is derived from University of Michigan LDAP 3.3 Release.

OpenLDAP 2.0.27-Release 		  20 August 2001			    LDAPPASSWD(1)
Unix & Linux Commands & Man Pages : ©2000 - 2018 Unix and Linux Forums

All times are GMT -4. The time now is 03:09 PM.