Ldif, Syntax, Options – Red Hat 8.1 User Manual

Example 6.4 . User Authenticating With a User Certificate and Changing His Password

A user, tuser4, authenticates with the user certificate and changes the password to new_password
over SSL.

ldappasswd -Z -h myhost -P /etc/dirsrv/slapd-instance_name/cert8.db -W
dbpassword -N "uid=tuser4"
-K /etc/dirsrv/slapd-instance_name/key3.db -s new_password

Example 6.5. User Authenticating with DIGEST_MD5 and Changing His Password

A user, tuser5, authenticates with DIGEST-MD5 and changes the password to new_password.

ldappasswd -h myhost -o “mech=DIGEST-MD5” -o
“authid=dn:uid=tuser5,ou=People,dc=example,dc=com”
-w old_password -s new_password

Example 6.6. User Already Authenticating by Kerberos Prompts for a New Password

A user, who has already authenticated by Kerberos, prompts for the new password. This is not
performed over SSL.

ldappasswd -h myhost -o "mech=GSSAPI" -S

6.8. ldif

ldif automatically formats LDIF files and creates base-64 encoded attribute values. Base-64 encoding
makes it possible to represent binary data, such as a JPEG image, in LDIF. Base-64 encoded data is
represented using a double colon (::) symbol. For example:

jpegPhoto:: encoded data

In addition to binary data, other values that must be base-64 encoded can identified with other symbols,
including the following:

Any value that begins with a space.
Any value that begins with a single colon (:).
Any value that contains non-ASCII data, including newlines.

The ldif command-line utility will take any input and format it with the correct line continuation and
appropriate attribute information. The ldif utility also senses whether the input requires base-64
encoding.

Syntax
Options

Syntax

The ldif command has the following format:

ldif [ -b ] [ attrtypes ] [ optional_options ]

Options

Red Hat Directory Server 8.1 Configuration and Command Reference

203