ldaphostlist.1m (2010 09)
l
ldaphostlist(1M) ldaphostlist(1M)
-p port Specifies the port number of the directory server to contact. This option is ignored if the
port number is specified in the servername as part of the
-h option. Refer to Binding to
the Directory Server below for additional details.
-P Prompts for user’s bind DN and password. Without
-P, ldaphostlist will attempt to
bind to the directory server using the environment variables
LDAP_BINDDN and
LDAP_BINDCRED. Or if those were not specified, the bind will be anonymous or as the
LDAP-UX proxy user, if configured. If the user running the command is logged using
identity managed in the directory server (has a posixAccount ), then that account will be
offered as a default.
-s scope Overrides the search scope as defined in the ldapux (5) configuration. scope specifies how
deep in the directory tree the search should search. scope may be one of the following
key words:
base: Will only perform a search on the base, specified by the
-b option.
one: Will search all entries that are immediate child entries of the base.
sub: Will search all entries below, and including the base.
-v Displays additional information used to analyze and troubleshoot usage issues. If attri-
butes from a requested attr list are not displayed as expected,
-v may provide additional
information.
-Z Requires an SSL connection to the directory server, even if the ldapux (5) configuration
does not require the use of SSL. Use of -Z requires either a valid directory server or CA
certificate be defined in the /etc/opt/ldapux/cert8.db
file.
An error will occur if the SSL connection could not be established. Refer to Binding to
the Directory Server below for additional details.
-ZZ Attempts a TLS connection to the directory server, even if the ldapux (5) configuration
does not require the use of TLS. If a TLS connection is unable to be established a non-
TLS and non-SSL connection will be established.
Use of
-ZZ is not recommended (use -Z or -ZZZ instead) unless alternative methods are
used to protect from network eavesdropping. Use of
-ZZ requires either a valid server or
CA certificate be defined in the
/etc/opt/ldapux/cert8.db
file. Refer to Binding
to the Directory Server below for additional details.
-ZZZ Requires a TLS connection to the directory server, even if the ldapux (5) configuration
does not require the use of TLS. Use of -ZZZ requires either a valid directory server or
CA certificate be defined in the /etc/opt/ldapux/cert8.db
file. An error will
occur if the TLS connection could not be established. Refer to Binding to the Directory
Server below for additional details.
Output Format
Output from
ldaphostlist will follow a consistent format, regardless of which attributes are used to
define information in an LDAP directory. The output format is:
dn: dn1
field1: value1
field2: value2
field3:: base64-encodeded-value3
dn: dn2
field1: value1
field2: value2
Each entry will be preceded by a DN, followed by one or more field-value pairs. The DN and each field-
value pair will be on a separate line, separated by a line-feed character. The field and value will be
separated by a colon and space character. And each entry will be separated by a blank line. In the case
when an unencodable character is encountered (carriage-return or line-feed, for example) in a value
string, the whole value will be base64 encoded and the field-value separator will change to two colons and
a space character. See Unencodable Characters below.
By default the following fields will be returned:
cn
ipAddress
4 Hewlett-Packard Company − 4 − HP-UX 11i v3: June 2010 Web Release