ldapuglist.1m (2010 09)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

ldapuglist(1M) ldapuglist(1M)

• The password is not stored in the LDAP directory server. The password might be stored in a third-

party repository such as a Kerberos KDC.

• The password is stored in a format un-parsable by HP-UX (such as SSHA, the Salted Secure Hash

Algorithm).

If the password is not available to

ldapuglist, the userPassword ﬁeld will not be displayed. If the

-L

option is speciﬁed, the password ﬁeld will contain the "x" character. Existence or lack of the password

ﬁeld can not be used to determine if an account is active or inactive.

RETURN VALUE

Upon exit,

ldapuglist returns the following:

0 Success.

ldapuglist exits with no errors or with one or more warnings.

<>0

ldapuglist returns with a non-zero exit status if it encounters an error, and messages will be

logged to stderr.

Messages will follow the below format:

ERROR: code

message

WARNING: code

message

Leading extra white space may be inserted to improve readability and follow 80 column screen

formatting.

code will be a programmatically parsable error key-string, while

message will be human-readable. Refer to the LDAP-UX Client Services Administrator’s Guide

for a list of possible error codes generated by the LDAP user and group management

tools.

EXTERNAL INFLUENCES

Environment Variables

LDAP_BINDDN Speciﬁed the DN of a user with sufﬁcient directory server privilege to discover

and enumerate users and/or groups in the LDAP directory server. While this

variable is optional, if LDAP_BINDDN is speciﬁed, LDAP_BINDCRED

must also

be speciﬁed.

LDAP_BINDCRED A password or other type of credential used for the user speciﬁed by

LDAP_BINDDN. While this variable is optional, if LDAP_BINDCRED

is speciﬁed,

LDAP_BINDDN must also be speciﬁed.

Refer to Security Considerations for important security impacts when these environment variables are

used.

EXAMPLES

Specifying

LDAP_BINDDN and LDAP_BINDCRED:

# export LDAP_BINDDN="cn=Directory Manager"

# export LDAP_BINDCRED="password"

# ldapuglist -f "(uid=apierce)" sn

dn: cn=Alan Pierce,ou=people,ou=IT,dc=FutureWidget,dc=com

cn: Alan Pierce

uid: apierce

uidNumber: 22014

gidNumber: 318

homeDirectory: /home/apierce

loginShell: /usr/bin/ksh

gecos: Alan Pierce,San Francisco,+1 505-555-6525

sn: Pierce

Using the

-m option on the same entry, assuming that the uidNumber has been mapped to employ-

eeNumber and gecos has been mapped to cn, l, and telephoneNumber.

HP-UX 11i v3: June 2010 Web Release − 7 − Hewlett-Packard Company 7