ldaphostlist.1m (2010 09)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

ldaphostlist(1M) ldaphostlist(1M)

the directory server, and thus this keyage option will only apply to those host entries that

do.

Please see the ldaphostmgr (1M) command and the

-k and -e options for additional

information about key ages and expiration.

Use of

-k is only recommended if the user performing the search request is not subject to

directory server search-size limits, since ldaphostmgr must retrieve each entry to

determine its keyage meets the speciﬁed criteria.

Note that if

-k is speciﬁed, but none of

-n, -g, -f nor -F options have been speciﬁed,

then only hosts that have sshPublicKey attributes will be displayed.

keyage is optional. If not speciﬁed, all hosts that have sshPublicKeys will be displayed,

unless limited by the

-n,

-g, -f,or-F options.

-n hostname Provides a simpliﬁed method for discovering a single host. Use of

-n

is the same as -f

(cn=name).

-n is used, the -g

, -F, and -f may not be speciﬁed on the command line.

-L Displays the host output in the following (

/etc/host)format:

ipAddress hostname [...]

If a host entry contains more than one name, those names will be repeated on the same

line, separated by spaces.

If a host entry contains more than one ipAddress , a separate line for each IP address will

be displayed, using the same list of host names.

The

-m option is ignored when the -L option is speciﬁed. The attr parameter list is

invalid when the

-L option is speciﬁed.

-N maxcount Speciﬁes the maximum number of entries to be returned. If this option is not speciﬁed,

the maximum number of entries to be returned is 200 by default (unless -g has been

speciﬁed). Some directory servers will limit the number of entries returned for a particu-

lar search request, regardless of how many entries are requested.

If the maxcount limit is set too high, it may not be possible to determine if a search has

returned complete results, since the directory server may have truncated the number of

returned entries before reaching the requested maximum count. Although some direc-

tory servers will indicate if a speciﬁed search exceeds an enumeration limit, if maxcount

is above the directory server’s internal conﬁgured limit, it is not always possible to deter-

mine if all results have been returned. However a reasonable assumption is that if max-

count entries have been returned, additional entries are likely still available that match

the search criteria than just those displayed.

The

-N option is ignored if the -g option has been speciﬁed.

-m Tells ldaphostlist to expose the names of the mapped attributes when returning

results. Normally ldaphostlist will return results as:

ﬁeldname

:value

Where ﬁeldname is one of the pre-deﬁned RFC2307 attribute names, and value is the

resulting value for that ﬁeld, after attribute mapping has been applied.

With

-m, the actual attribute name will be exposed as follows:

ﬁeldname[attributename]

:value

For example, if the RFC2307 attribute

cn has been mapped to the hostName attribute.

Without the -m option, the output of the cn ﬁeld would appear as:

cn: value-of-hostName

When

-m is used, and assuming the same conditions as above, the output representing

the same ﬁeld would appear as:

cn[hostName]: value-of-hostName

The

-m option does not apply if the -L option is speciﬁed.

HP-UX 11i v3: June 2010 Web Release − 3 − Hewlett-Packard Company 3