Red Hat Directory Server 8.0 Configuration, Command, and File Reference
Option Description
If a dash (-) is used as the password value,
the utility prompts for the password after the
command is entered. This avoids having the
password on the command line.
-x Specifies that the search results are sorted on
the server rather than on the client. This is
useful to sort according to a matching rule, as
with an international search. In general, it is
faster to sort on the server rather than on the
client.
-z
Specifies the maximum number of entries to
return in response to a search request. For
example:
-z 1000
Normally, regardless of the value specified
here, ldapsearch never returns more entries
than the number allowed by the server's
nsslapd-sizelimit attribute, unless the
authenticated user is the Directory Manager.
However, this limitation can be overridden by
binding as the root DN when using this
command-line argument. This is because
binding as the root DN causes this option to
default to zero (0). The default value for the
nsslapd-sizelimit attribute is 2000 entries.
See Section 3.1.92, “nsslapd-sizelimit (Size
Limit)” for more information.
Table 6.3. Commonly-Used ldapsearch Options
SSL Options.
The following command-line options can be used to specify that ldapsearch use LDAPS when
communicating with an SSL-enabled Directory Server or used for certificate-based
authentication. These options are valid only when LDAPS has been turned on and configured
for the Directory Server. For information on certificate-based authentication and creating a
certificate database for use with LDAP clients, see the "Managing SSL" chapter in the Directory
Server Administrator's Guide.
In addition to the standard ldapsearch options, to run an ldapsearch command using SSL,
ldapsearch
201