Modifying records – RSA Security 6.1 User Manual

RSA RADIUS Server 6.1 Administrator’s Guide

Using the LDAP Configuration Interface

91

Modifying Records

You can use the

ldapmodify

command to modify the RSA RADIUS Server

configuration.

ldapmodify -c -V2 -h hostname -p 354
-D "cn=oper,o=radius" -w radadmin -f filename

-s sub

Recursion is to be used starting at the base.

-T

To make the output more readable, long output lines
are not continued on the next line.

-b
"radiusclass=Client,o=radius"

This is the base at which the search operation is to
begin.

radiusname=*

This is the criterion which matched objects must
satisfy.

Table 17. Searching for Records Using the ldapsearch Command (Continued)

ldapsearch Option

Meaning

Table 18. Modifying Records Using the ldapmodify Command

ldapmodify Option

Meaning

-c

The command is to run in continuous mode; do not stop
on errors.

-V2

The version 2 dialect of LDAP is to be used to
communicate with the server.

NOTE: This option is not required, but specifying it
improves the performance of the transaction.

-h hostname

The name of the host to which this command applies. If
none is given, the command is applied to the local
database.

-p 354

TCP port 354 is to be used to communicate with the
LDAP interface of the server. The

-p

value must match

the TCPPort setting in the [LDAP] section of

radius.ini

. If the

-p

option is not specified, the

default port number for the RSA RADIUS Server and the
LDAP utilities is used (port 389).

-D "cn=oper,o=radius"

The command is authenticated using an administrative
account called

oper

.

NOTE: Any administrative account name may be
used in place of oper in the preceding example.
o=radius may not be changed.