Red Hat 8.1 Configuration And Command Reference page 181
Directory server; configuring and managing with command-line utilities
Hide thumbs
Also See for 8.1:
- Command reference manual (372 pages) ,
- Reference (228 pages) ,
- Deployment manual (164 pages)
Table of Contents
Advertisement
T able 6.5. Additional SSL ldapsearch Options
Option
-3
-I
-K
-m
-N
-P
-Q
-W
-W -
-Z
-ZZ
-ZZZ
Red Hat D irectory Server 8.1 Configuration and Command Reference
Description
Specifies that hostnames should be checked in SSL
certificates.
Specifies the SSL key password file that contains the
token:password pair.
Specifies the absolute path, including the filename, of
the private key database of the client.
T he -K option must be specified when the key
database has a different name than key3.db or when
the key database is not under the same directory as
the certificate database, the cert8.db file (the path
which is specified with the -P option).
Specifies the path to the security module database,
such as
/etc/dirsrv/slapd-instance_name/secm od.db.
T his option only need to be given if the security
module database is in a different directory than the
certificate database itself.
Specifies the certificate name to use for certificate-
based client authentication, such as -N "Server-
Cert". If this option is specified, then the -Z, -P, and
-W options are required. Also, if this option is specified,
then the -D and -w options must not be specified, or
certificate-based authentication will not occur, and the
bind operation will use the authentication credentials
specified on -D and -w.
Specifies the absolute path, including the option, of the
certificate database of the client. T his option is used
only with the -Z option.
When used on a machine where an SSL-enabled web
browser is configured, the path specified on this option
can be that of the certificate database for the browser.
For example:
-P /security/cert.db
T he client security files can also be stored on the
Directory Server in the
/etc/dirsrv/slapd-instance_name directory. In
this case, the -P option would call out a path and
filename similar to the following:
-P
/etc/dirsrv/slapd-instance_name/client-
cert.db
Specifies the token and certificate name, which is
separated by a semi-colon (:) for PKCS11.
Specifies the password for the private key database
identified in the -P option. For example:
-W secret
If a dash (-) is used as the password value, the utility
prompts for the password after the command is
entered. T his avoids having the password on the
command line.
Prompts for the password for the token database.
Specifies that SSL is to be used for the search
request.
Specifies the Start T LS request. Use this option to
make a cleartext connection into a secure one. If the
server does not support Start T LS, the command does
not have to be aborted; it will continue in cleartext.
Enforces the Start T LS request. T he server must
respond that the request was successful. If the server
does not support Start T LS, such as Start T LS is not
enabled or the certificate information is incorrect, the
181
Advertisement
Table of Contents
Related Manuals for Red Hat 8.1
Related Products for Red Hat 8.1
- Red Hat DIRECTORY SERVER 8.1 - 11-01-2010
- Red Hat DIRECTORY SERVER 8.1 - USING THE ADMIN SERVER
- Red Hat SYSTEM 8 - 25-03-2010
- Red Hat SYSTEM 8.0 - MANAGING SMART CARDS WITH THE ENTERPRISE SECURITY CLIENT
- Red Hat DIRECTORY SERVER 2.0 - GATEWAY
- Red Hat DIRECTORY SERVER 7.1
- Red Hat DIRECTORY SERVER 7.1 - ADMINISTRATOR
- Red Hat DIRECTORY SERVER 7.1 - DEPLOYMENT
- Red Hat DIRECTORY SERVER 7.1 - GATEWAY CUSTOMIZATION
- Red Hat DIRECTORY SERVER 7.1 - PLUG-IN PROGRAMMERS
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
- Red Hat DIRECTORY SERVER 8.0
- Red Hat DIRECTORY SERVER 8.1 - USING RED HAT CONSOLE 4-28-2008
- Red Hat Linux Virtual Server
- Red Hat LINUX VIRTUAL SERVER - FOR ENTERPRISE LINUX 5.2 REV 05-2008
- Red Hat LINUX VIRTUAL SERVER 4.5 - ADMINISTRATION