Persistent search options – Red Hat 8.1 User Manual

Page 179

Advertising
background image

The default is 389. If -Z is used, the default is
636.

-s

Specifies the scope of the search. The scope can
be one of the following:

base searches only the entry specified in the
-b option or defined by the LDAP_BASEDN
environment variable.
one searches only the immediate children of
the entry specified in the -b option. Only the
children are searched; the actual entry
specified in the -b option is not searched.
sub searches the entry specified in the -b
option and all of its descendants. That is,
perform a subtree search starting at the point
identified in the -b option. This is the default.

-w

Specifies the password associated with the
distinguished name that is specified in the -D
option. For example:

-w diner892

If this option is not specified, anonymous access
is used.
If a dash (-) is used as the password value, the
utility prompts for the password after the
command is entered. This avoids having the
password on the command line.

-x

Specifies that the search results are sorted on
the server rather than on the client. This is useful
to sort according to a matching rule, as with an
international search. In general, it is faster to sort
on the server rather than on the client.

-z

Specifies the maximum number of entries to
return in response to a search request. For
example:

-z 1000

Normally, regardless of the value specified here,
ldapsearch never returns more entries than
the number allowed by the server's nsslapd-
sizelimit attribute, unless the authenticated
user is the Directory Manager. However, this
limitation can be overridden by binding as the root
DN when using this command-line argument. This
is because binding as the root DN causes this
option to default to zero (0). The default value for
the nsslapd-sizelimit attribute is 2000
entries. See

Section 2.3.1.103, “nsslapd-sizelimit

(Size Limit)”

for more information.

Persistent Search Options

A persistent search leaves the search operation open after the initial search results are returned. This
allows the entries returned in the search to remain in cache and updates to be transmitted and included
as they occur. Persistent searches leave the ldapsearch open until the client closes the connection.
Using persistent searches is described in the

"Finding Directory Entries" appendix of the Administrator's

Guide

.

ldapsearch -r -C PS:changetype[:changesonly[:entrychgcontrols]] -b
dc=example,dc=com objectclass=*

In the access logs, a persistent search is identifies with the tag options=persistent.

Red Hat Directory Server 8.1 Configuration and Command Reference

179

Advertising
Popular Brands
Popular manuals