Manualshelf

Setup guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 6.01
31323334353637383940
How the Tool Works
38 Netscape Certificate Management System Command-Line Tools Guide May 2002
How the Tool Works
The Pin Generator allows you to generate PINs for user entries in an
LDAP-compliant directory and update the directory with these P INs. To run the
setpin command, you need at a minimum to specify the following:
The host name (
host) and port number (port) of the LDAP server
•ThebindDN(
binddn) and password (bindpw)
An LDAP filter (
filter) for filtering out the user entries that require PINs
For example:
setpin host=laiking port=19000 "binddn=CN=Directory Manager"
bindpw=netscape "filter=(ou=employees)" basedn=o=example.com
This command, if run, will query the directory for all the entries that match the
filter criteria, which in this case is all users belonging to an organizational unit (
ou)
called
employees. For each entry matching the filter, i nformation i s printed out to
standard error. Additionally, to the standard ou tput or the file named in outpu t;
see “Output File” on page 42.
You can also provide the tool with an input argument using the
input option. The
argument must be in the form of an ASCII file of pre-prepared D Ns and PINs (see
Figure 4-1). Note that the input file is not a substitute for the LDAP directory
entries; the filter attribute must still be provided. If an input f ile is provided, the
tool updates only those filtered attributes tha t match the ones in the input file. For
more information about the input file, see Input File” on page 40.