HP-UX Reference (11i v2 07/12) - 1M System Administration Commands A-M (vol 3)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

491

492

493

494

495

496

497

498

499

500

ldapugmod(1M) ldapugmod(1M)

-h hostname Speciﬁes the host name and optional port number (hostname

:port) of the directory server.

This option overrides the server list conﬁgured by LDAP-UX.

The hostname ﬁeld also supports speciﬁcation of IPv4 and IPv6 addresses. Note that when

a port is speciﬁed for an IPv6 address, the IPv6 address must be speciﬁed in square-

bracketed form.

If the optional port is unspeciﬁed, the port number is assumed to be 389 or 636 for SSL con-

nections (

-Z). Refer to Binding to the Directory Server below for additional details.

-p port Speciﬁes the port number of the directory server to contact. This option is ignored if the

port number is speciﬁed in the hostname as part of the

-h option. Refer to Binding to the

Directory Server below for additional details.

-n name Speciﬁes the new name of the user or group. This option will replace the uid attribute for

user entries and the cn attribute for group entries, or the mapped attribute if attribute

mapping has been speciﬁed for that attribute.

Use of

-n is the same as replacing the corresponding attribute. For example, assuming no

attribute mapping:

ldapugmod -t passwd -n newuid olduid

is the same as:

ldapugmod -t passwd olduid uid=newuid

-A

attrval Speciﬁes an attribute and value to be added to an entry. The format of attribute

=value,

where attribute is the name of the attribute to add, and value is the speciﬁc instance of that

attribute.

The

-A option is used when working with multi-valued attributes, to add a new value for a

multi-valued attribute, without removing already existing values for that attribute.

Note that use of the -A option interacts with the optional attr=value parameters. See

attr

=value below. The -A option may be speciﬁed more than once per command line. The

value portion of attrval may be an empty string.

-R attrval Speciﬁes an attribute or speciﬁc values of an attribute to be removed from the entry. The

format of attribute[=value], where attribute is the name of the attribute to remove, and

value is the speciﬁc instance of that attribute, if the attribute is multi-valued.

Note that use of the -R option interacts with the optional attr=value parameters. See

attr

=value below. The -R option may be speciﬁed more than once per command line.

-D DN Normally ldapugmod will search for the named user or group using the search rules

described by the service search descriptor in the LDAP-UX conﬁguration proﬁle. With

-D

the exact DN of the entry being modiﬁed may be speciﬁed.

If the -D option is speciﬁed, the uid_name or group_name parameter should not be

speciﬁed.

Options Applicable to ’-t passwd’

-f full_name Replaces the user’s full name. If full_name is an empty string (a pair of double quotes: ""),

ldapugmod will remove the cn (or mapped) attribute.

Note, refer to the WARNING section below for impacts when using this option.

-u uidNumber

Replaces the user’s numeric id number If uidNumber is an empty string (a pair of double

quotes: ""), ldapugmod will remove the uidNumber (or mapped) attribute. If the speciﬁed

uidNumber already exists in the directory server, ldapugmod will not modify the entry

and return an error exit status, unless the -F option is speciﬁed.

Note, refer to the WARNING section below for impacts when using this option.

-g group/gid Replace the user’s primary login group id number. If group/gid is an empty string,

ldapugmod will remove the gidNumber (or mapped) attribute.

In order to support numeric group names, ldapugmod treats the argument to -g as a

group name. If a numeric group name can not be found that matches the argument

speciﬁed, ldapugmod checks to see if the value is numeric and then checks to see if the

HP-UX 11i Version 2: December 2007 Update − 3 − Hewlett-Packard Company 491